CVEDB API

Vulnerabilities

Vulnerable Software

Softing: Security Vulnerabilities

CVE-2019-11528

An issue was discovered in Softing uaGate SI 1.60.01. A system default path for executables is user writable.

CVSS Score

7.5

EPSS Score

0.002

Published

2019-10-10

CVE-2019-15051

An issue was discovered in Softing uaGate (SI, MB, 840D) firmware through 1.71.00.1225. A CGI script is vulnerable to command injection via a maliciously crafted form parameter.

CVSS Score

8.8

EPSS Score

0.031

Published

2019-10-10

CVE-2019-11526

An issue was discovered in Softing uaGate SI 1.60.01. A maintenance script, that is executable via sudo, is vulnerable to file path injection. This enables the Attacker to write files with superuser privileges in specific locations.

CVSS Score

9.8

EPSS Score

0.003

Published

2019-10-10

CVE-2014-6616

Cross-site scripting (XSS) vulnerability in Softing FG-100 PROFIBUS Single Channel (FG-100-PB) with firmware FG-x00-PB_V2.02.0.00 allows remote attackers to inject arbitrary web script or HTML via the DEVICE_NAME parameter to cgi-bin/CFGhttp/.

CVSS Score

4.3

EPSS Score

0.003

Published

2015-08-31

Page 5

Vulnerabilities

Vulnerable Software

Softing: Security Vulnerabilities

Products

Pricing

Contact Us