Elspec-Ltd: >> G5dfr Firmware >> 1.2.1.12 Security Vulnerabilities
On Elspec G5 devices through 1.2.2.19, a person with physical access to the device can reset the Admin password by inserting a USB drive (containing a publicly documented reset string) into a USB port.
CVSS Score
6.8
EPSS Score
0.0
Published
2025-11-06
Elspec Engineering G5 Digital Fault Recorder Firmware v1.2.1.12 was discovered to contain a buffer overflow.
CVSS Score
7.5
EPSS Score
0.003
Published
2025-01-07
An issue was discovered in Elspec G5 digital fault recorder version 1.2.1.12 and earlier. An XML External Entity (XXE) vulnerability may allow an attacker to cause a Denial of Service (DoS) via a crafted XML payload.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-01-07
An XML External Entity (XXE) vulnerability in Elspec Engineering G5 Digital Fault Recorder Firmware v1.2.1.12 allows attackers to cause a Denial of Service (DoS) via a crafted XML payload.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-01-07