doverfuelingsolutions 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。
一般的な弱点パターンには vendor risk cross-site scripting and パス処理の欠陥 があり、vendor surface production workloads and vendor surface software deployment の利用場面で ファイル上書き and vendor impact session compromise などのリスクが生じる可能性があります。
掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2024-45373 | Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can change their privileges to administrator. | [email protected] | 8.7 | 0.45% | 2024-09-24 | 2026-06-17 |
| CVE-2024-45066 | A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE IP sub-menu can allow a remote attacker to inject arbitrary commands. | [email protected] | 10.0 | 0.79% | 2024-09-24 | 2026-06-17 |
| CVE-2024-43693 | A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE UTILITY sub-menu can allow a remote attacker to inject arbitrary commands. | [email protected] | 10.0 | 0.79% | 2024-09-24 | 2026-06-17 |
| CVE-2024-43692 | An attacker can directly request the ProGauge MAGLINK LX CONSOLE resource sub page with full privileges by requesting the URL directly. | [email protected] | 9.3 | 0.51% | 2024-09-24 | 2026-06-17 |
| CVE-2024-43423 | The web application for ProGauge MAGLINK LX4 CONSOLE contains an administrative-level user account with a password that cannot be changed. | [email protected] | 9.3 | 0.69% | 2024-09-24 | 2026-06-17 |
| CVE-2024-41725 | ProGauge MAGLINK LX CONSOLE does not have sufficient filtering on input fields that are used to render pages which may allow cross site scripting. | [email protected] | 8.7 | 0.35% | 2024-09-24 | 2026-06-17 |
| CVE-2023-38256 | Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 vulnerable to a path traversal attack, which could allow an attacker to access files stored on the system. | [email protected] | 6.8 | 0.57% | 2023-09-11 | 2026-06-17 |
| CVE-2023-36497 | Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 could allow a guest user to elevate to admin privileges. | [email protected] | 8.8 | 0.52% | 2023-09-11 | 2026-06-17 |
| CVE-2023-41256 | Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 are vulnerable to authentication bypass that could allow an unauthorized attacker to obtain user access. | [email protected] | 9.1 | 0.74% | 2023-09-11 | 2026-06-17 |