VYPR

Rosemount X-STREAM Gas Analyzer

by Emerson

CVEs (6)

  • CVE-2021-27461May 20, 2021
    risk 0.00cvss epss 0.01

    A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected webserver applications allow access to stored data that can be obtained by using specially crafted URLs.

  • CVE-2021-27459May 20, 2021
    risk 0.00cvss epss 0.02

    A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The webserver of the affected products allows unvalidated files to be uploaded, which an attacker could utilize to execute arbitrary code.

  • CVE-2021-27457May 20, 2021
    risk 0.00cvss epss 0.00

    A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected products utilize a weak encryption algorithm for storage of sensitive data, which may allow an attacker to more easily obtain credentials used for access.

  • CVE-2021-27467May 20, 2021
    risk 0.00cvss epss 0.01

    A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected product’s web interface allows an attacker to route click or keystroke to another page provided by the attacker to gain unauthorized access to sensitive information.

  • CVE-2021-27465May 20, 2021
    risk 0.00cvss epss 0.01

    A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected applications do not validate webpage input, which could allow an attacker to inject arbitrary HTML code into a webpage. This would allow an attacker to modify the page…

  • CVE-2021-27463May 20, 2021
    risk 0.00cvss epss 0.01

    A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected applications utilize persistent cookies where the session cookie attribute is not properly invalidated, allowing an attacker to intercept the cookies and gain access to…