Vendor
Waybox
Products
3
CVEs
4
Across products
4
Status
Private
Products
3- 2 CVEs
- 1 CVE
- 1 CVE
Recent CVEs
4| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-29126 | 0.00 | — | 0.00 | Nov 5, 2024 | The Waybox Enel X web management application contains a PHP-type juggling vulnerability that may allow a brute force process and under certain conditions bypass authentication. | |||
| CVE-2023-29121 | 0.00 | — | 0.00 | Nov 5, 2024 | Waybox Enel TCF Agent service could be used to get administrator’s privileges over the Waybox system. | |||
| CVE-2023-29119 | 0.00 | — | 0.00 | Nov 5, 2024 | Waybox Enel X web management application could execute arbitrary requests on the internal database via /admin/dbstore.php. | |||
| CVE-2023-29116 | 0.00 | — | 0.00 | Nov 5, 2024 | Under certain conditions, through a request directed to the Waybox Enel X web management application, information like Waybox OS version or service configuration details could be obtained. |
- CVE-2023-29126Nov 5, 2024risk 0.00cvss —epss 0.00
The Waybox Enel X web management application contains a PHP-type juggling vulnerability that may allow a brute force process and under certain conditions bypass authentication.
- CVE-2023-29121Nov 5, 2024risk 0.00cvss —epss 0.00
Waybox Enel TCF Agent service could be used to get administrator’s privileges over the Waybox system.
- CVE-2023-29119Nov 5, 2024risk 0.00cvss —epss 0.00
Waybox Enel X web management application could execute arbitrary requests on the internal database via /admin/dbstore.php.
- CVE-2023-29116Nov 5, 2024risk 0.00cvss —epss 0.00
Under certain conditions, through a request directed to the Waybox Enel X web management application, information like Waybox OS version or service configuration details could be obtained.