VYPR

FOX515T

by Abb

CVEs (2)

  • CVE-2017-15583MedOct 18, 2017
    risk 0.42cvss 6.5epss 0.01

    The embedded web server on ABB Fox515T 1.0 devices is vulnerable to Local File Inclusion. It accepts a parameter that specifies a file for display or for use as a template. The filename is not validated; an attacker could retrieve any file.

  • CVE-2017-14025MedNov 6, 2017
    risk 0.36cvss 5.5epss 0.00

    An Improper Input Validation issue was discovered in ABB FOX515T release 1.0. An improper input validation vulnerability has been identified, allowing a local attacker to provide a malicious parameter to the script that is not validated by the application, This could enable the…