The default configuration of Crimson 3.1 (Build versions prior to 3119.001) allows a user to be able to read and modify the database without authentication.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:NRedlion Crimson
APPRedlion3.1
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Powiązane podatności
CVE-2023-5719HIGH8.8ten sam produkt
The Crimson 3.2 Windows-based configuration tool allows users with administrative access to define new passwo...
CVE-2022-3090HIGH7.5ten sam produkt
Red Lion Controls Crimson 3.0 versions 707.000 and prior, Crimson 3.1 versions 3126.001 and prior, and Crimson...
CVE-2020-27279HIGH7.5ten sam produkt
A NULL pointer deference vulnerability has been identified in the protocol converter. An attacker could send a...
CVE-2019-10996HIGH7.8ten sam produkt
Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vuln...
CVE-2019-10978HIGH7.8ten sam produkt
Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vuln...