VYPR

4CCT-EA6-334126BF

by ZIV Automation

CVEs (2)

  • CVE-2021-25909HigJan 29, 2021
    risk 0.56cvss 8.6epss 0.01

    ZIV Automation 4CCT-EA6-334126BF firmware version 3.23.80.27.36371, allows an unauthenticated, remote attacker to cause a denial of service condition on the device. An attacker could exploit this vulnerability by sending specific packets to the port 7919.

  • CVE-2021-25910HigJan 29, 2021
    risk 0.52cvss 8.0epss 0.00

    Improper Authentication vulnerability in the cookie parameter of ZIV AUTOMATION 4CCT-EA6-334126BF allows a local attacker to perform modifications in several parameters of the affected device as an authenticated user.