This page aggregates publicly disclosed CVE and security risk information related to atlascopco, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-1899 | Atlas Copco Power Focus 6000 web server is not a secure connection by default, which could allow an attacker to gain sensitive information by monitoring network traffic between user and controller. | [email protected] | 9.4 | 0.03% | 2023-06-12 | 2024-11-21 |
| CVE-2023-1898 | Atlas Copco Power Focus 6000 web server uses a small amount of session ID numbers. An attacker could enter a session ID number to retrieve data for an active user’s session. | [email protected] | 9.4 | 0.08% | 2023-06-12 | 2024-11-21 |
| CVE-2023-1897 | Atlas Copco Power Focus 6000 web server does not sanitize the login information stored by the authenticated user’s browser, which could allow an attacker with access to the user’s computer to gain credential information of the controller. | [email protected] | 9.4 | 0.05% | 2023-06-12 | 2024-11-21 |