This page lists publicly disclosed CVE vulnerabilities affecting softing uagate_si_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2019-15051 | An issue was discovered in Softing uaGate (SI, MB, 840D) firmware through 1.71.00.1225. A CGI script is vulnerable to command injection via a maliciously crafted form parameter. | [email protected] | 8.8 | 3.30% | 2019-10-10 | 2026-06-16 |
| CVE-2019-11528 | An issue was discovered in Softing uaGate SI 1.60.01. A system default path for executables is user writable. | [email protected] | 7.5 | 1.15% | 2019-10-10 | 2026-06-16 |
| CVE-2019-11527 | An issue was discovered in Softing uaGate SI 1.60.01. A CGI script is vulnerable to command injection with a maliciously crafted url parameter. | [email protected] | 8.8 | 3.49% | 2019-10-10 | 2026-06-16 |
| CVE-2019-11526 | An issue was discovered in Softing uaGate SI 1.60.01. A maintenance script, that is executable via sudo, is vulnerable to file path injection. This enables the Attacker to write files with superuser privileges in specific locations. | [email protected] | 9.8 | 1.96% | 2019-10-10 | 2026-06-16 |