VYPR

SINEC INS

by SINEC INS

CVEs (4)

  • CVE-2022-45092CriJan 10, 2023
    risk 0.67cvss 9.9epss 0.31

    A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 1). An authenticated remote attacker with access to the Web Based Management (443/tcp) of the affected product, could potentially read and write arbitrary files from and to the device's file system.…

  • CVE-2022-45094HigJan 10, 2023
    risk 0.55cvss 8.4epss 0.01

    A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 1). An authenticated remote attacker with access to the Web Based Management (443/tcp) of the affected product, could potentially inject commands into the dhcpd configuration of the affected…

  • CVE-2022-45093HigJan 10, 2023
    risk 0.55cvss 8.5epss 0.01

    A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 1). An authenticated remote attacker with access to the Web Based Management (443/tcp) of the affected product as well as with access to the SFTP server of the affected product (22/tcp), could…

  • CVE-2023-48428HigDec 12, 2023
    risk 0.47cvss 7.2epss 0.01

    A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 2). The radius configuration mechanism of affected products does not correctly check uploaded certificates. A malicious admin could upload a crafted certificate resulting in a denial-of-service…