machinesense feverwarn_firmware の CVE(6 件)

CVE 件数: 6 CPE versions: View versions table

概要

本ページは machinesense feverwarn_firmware に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。

表示中 16 / 6 CVE 件数
«« 先頭 « 前へ 1 / 1 次へ »
CVE 概要 ソース CVSS 最大値 EPSS(%) 公開 更新
CVE-2023-6221 The cloud provider MachineSense uses for integration and deployment for multiple MachineSense devices, such as the programmable logic controller (PLC), PumpSense, PowerAnalyzer, FeverWarn, and others is insufficiently protected against unauthorized access. An attacker with access to the internal procedures could view source code, secret credentials, and more. [email protected] 7.7 0.58% 2024-02-01 2026-06-17
CVE-2023-49617 The MachineSense application programmable interface (API) is improperly protected and can be accessed without authentication. A remote attacker could retrieve and modify sensitive information without any authentication. [email protected] 10.0 0.80% 2024-02-01 2026-06-17
CVE-2023-49610 MachineSense FeverWarn Raspberry Pi-based devices lack input sanitization, which could allow an attacker on an adjacent network to send a message running commands or could overflow the stack. [email protected] 8.1 0.39% 2024-02-01 2026-06-17
CVE-2023-49115 MachineSense devices use unauthenticated MQTT messaging to monitor devices and remote viewing of sensor data by users. [email protected] 7.5 0.59% 2024-02-01 2026-06-17
CVE-2023-47867 MachineSense FeverWarn devices are configured as Wi-Fi hosts in a way that attackers within range could connect to the device's web services and compromise the device. [email protected] 8.8 0.40% 2024-02-01 2026-06-17
CVE-2023-46706 Multiple MachineSense devices have credentials unable to be changed by the user or administrator. [email protected] 9.1 0.65% 2024-02-01 2026-06-17
«« 先頭 « 前へ 1 / 1 次へ »
cvelogic Threat Intelligence