VYPR

N-Tron 702-W / 702M12-W

by Red Lion Controls

CVEs (4)

  • CVE-2020-16204CriSep 1, 2020
    risk 0.64cvss 9.8epss 0.05

    The affected product is vulnerable due to an undocumented interface found on the device, which may allow an attacker to execute commands as root on the device on the N-Tron 702-W / 702M12-W (all versions).

  • CVE-2020-16210CriSep 1, 2020
    risk 0.59cvss 9.0epss 0.03

    The affected product is vulnerable to reflected cross-site scripting, which may allow an attacker to remotely execute arbitrary code and perform actions in the context of an attacked user on the N-Tron 702-W / 702M12-W (all versions).

  • CVE-2020-16206CriSep 1, 2020
    risk 0.59cvss 9.0epss 0.03

    The affected product is vulnerable to stored cross-site scripting, which may allow an attacker to remotely execute arbitrary code to gain access to sensitive data on the N-Tron 702-W / 702M12-W (all versions).

  • CVE-2020-16208HigSep 1, 2020
    risk 0.57cvss 8.8epss 0.01

    The affected product is vulnerable to cross-site request forgery, which may allow an attacker to modify different configurations of a device by luring an authenticated user to click on a crafted link on the N-Tron 702-W / 702M12-W (all versions).