VYPR

3D-A1000 Dimensioning System

by Cognex

CVEs (3)

  • CVE-2022-1368CriSep 6, 2022
    risk 0.64cvss 9.8epss 0.01

    The Cognex 3D-A1000 Dimensioning System in firmware version 1.0.3 (3354) and prior is vulnerable to CWE-306: Missing Authentication for Critical Function, which allows unauthorized users to change the operator account password via webserver commands by monitoring web socket…

  • CVE-2022-1525CriSep 6, 2022
    risk 0.59cvss 9.1epss 0.01

    The Cognex 3D-A1000 Dimensioning System in firmware version 1.0.3 (3354) and prior is vulnerable to CWE-602: Client-Side Enforcement of Server-Side Security, which could allow attackers to bypass web access controls by inspecting and modifying the source code of password…

  • CVE-2022-1522MedSep 6, 2022
    risk 0.34cvss 5.3epss 0.00

    The Cognex 3D-A1000 Dimensioning System in firmware version 1.0.3 (3354) and prior is vulnerable to CWE-117: Improper Output Neutralization for Logs, which allows an attacker to create false logs that show the password as having been changed when it is not, complicating…