VYPR
Vendor

Meinberg

Products
18
CVEs
12
Across products
59
Status
Private

Products

18

Recent CVEs

12
  • CVE-2020-7240HigJan 20, 2020
    risk 0.57cvss 8.8epss 0.02

    Meinberg Lantime M300 and M1000 devices allow attackers (with privileges to configure a device) to execute arbitrary OS commands by editing the /config/netconf.cmd script (aka Extended Network Configuration). Note: According to the description, the vulnerability requires a fully…

  • CVE-2016-3989HigJul 3, 2016
    risk 0.56cvss 8.1epss 0.05

    The NTP time-server interface on Meinberg IMS-LANTIME M3000, IMS-LANTIME M1000, IMS-LANTIME M500, LANTIME M900, LANTIME M600, LANTIME M400, LANTIME M300, LANTIME M200, LANTIME M100, SyncFire 1100, and LCES devices with firmware before 6.20.004 allows remote authenticated users…

  • CVE-2016-3962HigJul 3, 2016
    risk 0.51cvss 7.3epss 0.05

    Stack-based buffer overflow in the NTP time-server interface on Meinberg IMS-LANTIME M3000, IMS-LANTIME M1000, IMS-LANTIME M500, LANTIME M900, LANTIME M600, LANTIME M400, LANTIME M300, LANTIME M200, LANTIME M100, SyncFire 1100, and LCES devices with firmware before 6.20.004…

  • CVE-2019-17584HigJan 21, 2020
    risk 0.49cvss 7.5epss 0.01

    The Meinberg SyncBox/PTP/PTPv2 devices have default SSH keys which allow attackers to get root access to the devices. All firmware versions up to v5.34o, v5.34s, v5.32* or 5.34g are affected. The private key is also used in an internal interface of another Meinberg Device and…

  • CVE-2016-3988HigJul 3, 2016
    risk 0.48cvss 7.3epss 0.01

    Multiple stack-based buffer overflows in the NTP time-server interface on Meinberg IMS-LANTIME M3000, IMS-LANTIME M1000, IMS-LANTIME M500, LANTIME M900, LANTIME M600, LANTIME M400, LANTIME M300, LANTIME M200, LANTIME M100, SyncFire 1100, and LCES devices with firmware before…

  • CVE-2021-46902HigFeb 4, 2024
    risk 0.47cvss 7.2epss 0.01

    An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. Path validation is mishandled, and thus an admin can read or delete files in violation of expected access controls.

  • CVE-2023-1731HigApr 24, 2023
    risk 0.47cvss 7.2epss 0.01

    In Meinbergs LTOS versions prior to V7.06.013, the configuration file upload function would not correctly validate the input, which would allow an remote authenticated attacker with high privileges to execute arbitrary commands.

  • CVE-2017-16788HigDec 15, 2017
    risk 0.47cvss 7.2epss 0.04

    Directory traversal vulnerability in the "Upload Groupkey" functionality in the Web Configuration Utility in Meinberg LANTIME devices with firmware before 6.24.004 allows remote authenticated users with Admin-User access to write to arbitrary files and consequently gain root…

  • CVE-2017-16787MedDec 15, 2017
    risk 0.46cvss 6.5epss 0.07

    The Web Configuration Utility in Meinberg LANTIME devices with firmware before 6.24.004 allows remote attackers to read arbitrary files by leveraging failure to restrict URL access.

  • CVE-2021-46903MedFeb 4, 2024
    risk 0.42cvss 6.5epss 0.01

    An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. An admin can delete required user accounts (in violation of expected access control).

  • CVE-2017-16786MedDec 19, 2017
    risk 0.42cvss 6.5epss 0.02

    The Web Configuration Utility in Meinberg LANTIME devices with firmware before 6.24.004 allows remote authenticated users with certain privileges to read arbitrary files via (1) the ntpclientcounterlogfile parameter to cgi-bin/mainv2 or (2) vectors involving curl support of the…

  • CVE-2014-5417Nov 5, 2014
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in Meinberg NTP Server firmware on LANTIME M-Series devices 6.15.019 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.