Emerson Wireless_1410_gateway_firmware

7 CVEs affecting Emerson Wireless_1410_gateway_firmware. Latest disclosed: 2021-10-22. Critical: 1, High: 6.

Top CVEs affecting Emerson Wireless_1410_gateway_firmware
CVESeverityScorePublishedSummary
CVE-2020-12030Critical10.02021-09-29There is a flaw in the code used to configure the internal gateway firewall when the gateway's VLAN feature is enabled. If a user enables the VLAN setting, the…
CVE-2021-42542High8.02021-10-22The affected product is vulnerable to directory traversal due to mishandling of provided backup folder structure.
CVE-2021-42540High8.02021-10-22The affected product is vulnerable to a unsanitized extract folder for system configuration. A low-privileged user can leverage this logic to overwrite the set…
CVE-2021-42539High8.02021-10-22The affected product is vulnerable to a missing permission validation on system backup restore, which could lead to account take over and unapproved settings c…
CVE-2021-42538High8.02021-10-22The affected product is vulnerable to a parameter injection via passphrase, which enables the attacker to supply uncontrolled input.
CVE-2021-42536High8.02021-10-22The affected product is vulnerable to a disclosure of peer username and password by allowing all users access to read global variables.
CVE-2021-38485High8.02021-10-22The affected product is vulnerable to improper input validation in the restore file. This enables an attacker to provide malicious config files to replace any…