CRITICAL🇵🇱 Wersja polska

CVE-2017-11165

CVSS 9.8v3.1pub. 2017-07-12upd. 2026-04-30

dataTaker DT80 dEX 1.50.012 allows remote attackers to obtain sensitive credential and configuration information via a direct request for the /services/getFile.cmd?userfile=config.xml URI.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Thermofisher Dt80 Dex

    HW
    Thermofisher
    wszystkie wersje
  • Thermofisher Dt80 Dex Firmware

    OS
    Thermofisher
    1.50.012
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-54304CRITICAL9.8PL ✓ten sam vendor

Niezabezpieczony serwer X11 w Thermo Fisher Ion Torrent OneTouch 2 umożliwia RCE z uprawnieniami root

CVE-2025-53963CRITICAL9.8PL ✓ten sam vendor

Słabe domyślne hasło root w urządzeniu Thermo Fisher Ion Torrent OneTouch 2

CVE-2025-54303CRITICAL9.8PL ✓ten sam vendor

Domyślne słabe poświadczenia w Thermo Fisher Torrent Suite Software

CVE-2017-11349CRITICAL9.8ten sam vendor

dataTaker DT8x dEX 1.72.007 allows remote attackers to compose programs or schedules, for purposes such as sen...

CVE-2025-54305HIGH7.8ten sam vendor

An issue was discovered in the Thermo Fisher Torrent Suite Django application 5.18.1. One of the middlewares i...