Voltronicpower Snmp Web Pro vulnerabilities
3 known vulnerabilities affecting voltronicpower/snmp_web_pro.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-33274P2CRITICALCVSS 9.8v1.12023-07-12
CVE-2023-33274 [CRITICAL] CWE-287 CVE-2023-33274: The authentication mechanism in PowerShield SNMP Web Pro 1.1 contains a vulnerability that allows un
The authentication mechanism in PowerShield SNMP Web Pro 1.1 contains a vulnerability that allows unauthenticated users to directly access Common Gateway Interface (CGI) scripts without proper identification or authorization. This vulnerability arises from a lack of proper cookie verification and affects all instances of SNMP Web Pro 1.1 without H
nvd
CVE-2023-39073P3CRITICALCVSS 9.8v1.12023-09-12
CVE-2023-39073 [CRITICAL] CWE-862 CVE-2023-39073: An issue in SNMP Web Pro v.1.1 allows a remote attacker to execute arbitrary code and obtain senstiv
An issue in SNMP Web Pro v.1.1 allows a remote attacker to execute arbitrary code and obtain senstive information via a crafted request.
nvd
CVE-2023-49563P4MEDIUMCVSS 6.1v1.12023-12-12
CVE-2023-49563 [MEDIUM] CWE-79 CVE-2023-49563: Cross Site Scripting (XSS) in Voltronic Power SNMP Web Pro v.1.1 allows an attacker to execute arbit
Cross Site Scripting (XSS) in Voltronic Power SNMP Web Pro v.1.1 allows an attacker to execute arbitrary code via a crafted script within a request to the webserver.
nvd