Reliablecontrols: Security Vulnerabilities
Reliable Controls MACH-ProWebCom/Sys, all versions prior to 2.15 (Firmware versions prior to 8.26.4), may allow attacker to execute commands on behalf of the user when an authenticated user clicks on a malicious link.
CVSS Score
6.1
EPSS Score
0.003
Published
2019-12-24
Reliable Controls LicenseManager versions 3.4 and prior may allow an authenticated user to insert malicious code into the system root path, which may allow execution of code with elevated privileges of the application.
CVSS Score
7.8
EPSS Score
0.001
Published
2019-12-11
Reliable Controls MACH-ProWebCom 7.80 devices allow remote attackers to obtain sensitive information via a direct request for the data/fileinfo.xml or job/job.json file, as demonstrated the Master Password field.
CVSS Score
7.5
EPSS Score
0.003
Published
2018-06-20