Meteocontrol Web\'log_pro_unlimited
3 CVEs affecting Meteocontrol Web\'log_pro_unlimited. Latest disclosed: 2016-05-14. Critical: 3, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2016-2298 | Critical | 9.8 | 2016-05-14 | Meteocontrol WEB'log Basic 100, Light, Pro, and Pro Unlimited allows remote attackers to obtain sensitive cleartext information via unspecified vectors. |
CVE-2016-2297 | Critical | 9.4 | 2016-05-14 | Meteocontrol WEB'log Basic 100, Light, Pro, and Pro Unlimited allows remote attackers to execute arbitrary commands via an "access command shell-like feature." |
CVE-2016-2296 | Critical | 9.4 | 2016-05-14 | Meteocontrol WEB'log Basic 100, Light, Pro, and Pro Unlimited does not require authentication for "post-admin" login pages, which allows remote attackers to ob… |