Tenable.ot Family for Tenable OT Security

IDNameSeverity
502190Schneider Electric Modicon M340 GoAhead Webserver Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2015-7937)
critical
502189Westermo DR-250, DR-260 and MR-260 Unrestricted Upload of File with Dangerous Type (CVE-2018-19612)
high
502188Westermo Lynx Cross-site Scripting (CVE-2023-42765)
medium
502187Westermo Lynx Cross-site Scripting (CVE-2023-45227)
medium
502186Westermo Lynx Cross-Site Request Forgery (CVE-2023-38579)
high
502185Westermo DR-250, DR-260 and MR-260 Cross-site Scripting (CVE-2018-19614)
medium
502184Westermo Lynx Cross-site Scripting (CVE-2023-45222)
medium
502183Westermo Lynx Code Injection (CVE-2023-45735)
high
502182Westermo MRD-305-DIN, MRD-315, MRD-355, and MRD-455 Use of Hard-Coded Cryptographic Key (CVE-2016-5816)
high
502181Westermo MRD-305-DIN, MRD-315, MRD-355, and MRD-455 Cross-Site Request Forgery (CVE-2017-12703)
high
502180Westermo WeOS Stack-Based Buffer Overflow (CVE-2015-7547)
high
502179Westermo Lynx Cross-Origin Resource Sharing (CVE-2023-45213)
medium
502178Westermo DR-250, DR-260 and MR-260 Cross-Site Request Forgery (CVE-2018-19613)
medium
502177Westermo Lynx Cross-site Scripting (CVE-2023-40143)
medium
502176Westermo WeOS Cryptographic Issues (CVE-2015-7923)
critical
502175Westermo Lynx Cross-site Scripting (CVE-2023-40544)
medium
502174Westermo MRD-305-DIN, MRD-315, MRD-355, and MRD-455 Use of Hard-Coded Credentials (CVE-2017-12709)
medium
502173Westermo xRD Products Authentication Bypass (CVE-2018-10933)
critical
502172Westermo MRD-315 ASP Source Code Disclosure (CVE-2020-7227)
medium
502171Siemens SCALANCE W1750D Devices Use After Free (CVE-2023-0215)
high
502170Siemens SCALANCE W1750D Command Injection (CVE-2022-0778)
high
502169Siemens SCALANCE W1750D Buffer Overflow (CVE-2023-22779)
critical
502168Siemens SCALANCE W1750D Buffer Overflow (CVE-2023-22781)
critical
502167Siemens SCALANCE W1750D Buffer Overflow (CVE-2023-22786)
critical
502166Siemens SCALANCE W1750D Command Injection (CVE-2023-22788)
high
502165Siemens SCALANCE W1750D Buffer Overflow (CVE-2023-22782)
critical
502164Siemens SCALANCE W1750D Buffer Overflow (CVE-2023-22780)
critical
502163Siemens SCALANCE W1750D Command Injection (CVE-2023-22790)
high
502162Siemens SCALANCE W1750D Exposure of Sensitive Information to an Unauthorized Actor (CVE-2023-22791)
medium
502161Siemens SCALANCE W1750D Improper Input Validation (CVE-2023-22787)
high
502160Siemens SCALANCE W1750D Buffer Overflow (CVE-2023-22783)
critical
502159Siemens SCALANCE W1750D Buffer Overflow (CVE-2023-22784)
critical
502158Siemens SCALANCE W1750D Command Injection (CVE-2023-22789)
high
502157Siemens SCALANCE W1750D Buffer Overflow (CVE-2023-22785)
critical
502156Cisco IP Phones 8800 Series Path Traversal (CVE-2019-1765)
medium
502155Cisco IP Phones 7800 Series and 8800 Series and Cisco Wireless IP Phone 8821 Denial of Service (CVE-2018-0325)
high
502154Cisco IP Phones 8800 Series Command Injection Vulnerability in Debug Shell (CVE-2017-12305)
medium
502153Cisco Unified IP Phone 8900/9900 Series Crafted SDP Packet (CVE-2013-5526)
high
502152Cisco IP Phones TCP Packet Flood Denial of Service (CVE-2020-3574)
high
502151Cisco Multiple Products Use of a Broken or Risky Cryptographic Algorithm (CVE-2020-26145)
medium
502150Cisco Unified IP Phones 9900 Code Injection (CVE-2012-1328)
medium
502149Cisco Multiple Products libSRTP Denial of Service (CVE-2015-6360)
high
502148Cisco Multiple Products Use of a Broken or Risky Cryptographic Algorithm (CVE-2020-26141)
medium
502147Cisco IP Phones Stored Cross-Site Scripting (CVE-2023-20265)
medium
502146Cisco Multiple Products Use of a Broken or Risky Cryptographic Algorithm (CVE-2020-26140)
medium
502145Cisco Third-Generation IP Phone CTL Trust Chain Enforcement (CVE-2014-0737)
medium
502144Cisco IP Phones 6800, 7800, and 8800 Series with Multiplatform Firmware Cross-Site Scripting (CVE-2019-16008)
medium
502143Cisco IP Phones 8800 Series Cross-Site Request Forgery (CVE-2019-1764)
high
502142Cisco IP Phones Web-based Management Interface Stack-based Buffer Overflow (CVE-2023-20079)
high
502141Cisco IP Phones 6800, 7800, and 8800 Series with Multiplatform Firmware Web UI Command Injection (CVE-2018-0341)
high