Unitronics Unistream Unilogic vulnerabilities
8 known vulnerabilities affecting unitronics/unistream_unilogic.
Total CVEs
8
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH5MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2024-27767P2CRITICALCVSS 9.8≥ All versions, < 1.35.2272024-03-18
CVE-2024-27767 [CRITICAL] CWE-287 CVE-2024-27767: CWE-287: Improper Authentication may allow Authentication Bypass
CWE-287: Improper Authentication may allow Authentication Bypass
nvd
CVE-2024-27772P2HIGHCVSS 8.8≥ All versions, < 1.35.2272024-03-18
CVE-2024-27772 [HIGH] CWE-78 CVE-2024-27772: Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-78: 'OS Command Injection' may al
Unitronics Unistream Unilogic – Versions prior to 1.35.227 -
CWE-78: 'OS Command Injection' may allow RCE
nvd
CVE-2024-27768P3CRITICALCVSS 9.8≥ All versions, < 1.35.2272024-03-18
CVE-2024-27768 [CRITICAL] CWE-22 CVE-2024-27768: Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE
nvd
CVE-2024-27771P3HIGHCVSS 8.8≥ All versions, < 1.35.2272024-03-18
CVE-2024-27771 [HIGH] CWE-22 CVE-2024-27771: Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RC
Unitronics Unistream Unilogic – Versions prior to 1.35.227 -
CWE-22: 'Path Traversal' may allow RCE
nvd
CVE-2024-27770P3HIGHCVSS 8.8≥ All versions, < 1.35.2272024-03-18
CVE-2024-27770 [HIGH] CWE-23 CVE-2024-27770: Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-23: Relative Path Traversal
Unitronics Unistream Unilogic – Versions prior to 1.35.227 -
CWE-23: Relative Path Traversal
nvd
CVE-2024-27773P3HIGHCVSS 8.8≥ All versions, < 1.35.2272024-03-18
CVE-2024-27773 [HIGH] CWE-348 CVE-2024-27773: Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-348: Use of Less Trusted Source m
Unitronics Unistream Unilogic – Versions prior to 1.35.227 -
CWE-348: Use of Less Trusted Source may allow RCE
nvd
CVE-2024-27769P3HIGHCVSS 8.8≥ All versions, < 1.35.2272024-03-18
CVE-2024-27769 [HIGH] CWE-200 CVE-2024-27769: Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-200: Exposure of Sensitive Infor
Unitronics Unistream Unilogic – Versions prior to 1.35.227 -
CWE-200: Exposure of Sensitive Information to an Unauthorized Actor may allow Taking Ownership Over Devices
nvd
CVE-2024-27774P3MEDIUMCVSS 6.5≥ All versions, < 1.35.2272024-03-18
CVE-2024-27774 [MEDIUM] CWE-259 CVE-2024-27774: Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-259: Use of Hard-coded Password m
Unitronics Unistream Unilogic – Versions prior to 1.35.227 -
CWE-259: Use of Hard-coded Password may allow disclosing Sensitive Information Embedded inside Device's Firmware
nvd