Vulnerability Details CVE-2020-27254
Emerson Rosemount X-STREAM Gas AnalyzerX-STREAM enhanced XEGP, XEGK, XEFD, XEXF – all revisions, The affected products are vulnerable to improper authentication for accessing log and backup data, which could allow an attacker with a specially crafted URL to obtain access to sensitive information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.2%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2020-27254
-
cpe:2.3:h:emerson:x-stream_enhanced_xefd:-
-
cpe:2.3:h:emerson:x-stream_enhanced_xegk:-
-
cpe:2.3:h:emerson:x-stream_enhanced_xegp:-
-
cpe:2.3:h:emerson:x-stream_enhanced_xexf:-
-
cpe:2.3:o:emerson:x-stream_enhanced_xefd_firmware:-
-
cpe:2.3:o:emerson:x-stream_enhanced_xegk_firmware:-
-
cpe:2.3:o:emerson:x-stream_enhanced_xegp_firmware:-
-
cpe:2.3:o:emerson:x-stream_enhanced_xexf_firmware:-