Vulnerabilities (CVE)

Filtered by vendor Deltacontrols Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-29735 1 Deltacontrols 2 Entelitouch, Entelitouch Firmware 2024-11-21 6.8 MEDIUM 8.8 HIGH
Delta Controls enteliTOUCH 3.40.3935, 3.40.3706, and 3.33.4005 allows attackers to execute arbitrary commands via a crafted HTTP request.
CVE-2022-29733 1 Deltacontrols 2 Entelitouch, Entelitouch Firmware 2024-11-21 4.3 MEDIUM 5.9 MEDIUM
Delta Controls enteliTOUCH 3.40.3935, 3.40.3706, and 3.33.4005 was discovered to transmit and store sensitive information in cleartext. This vulnerability allows attackers to intercept HTTP Cookie authentication credentials via a man-in-the-middle attack.
CVE-2022-29732 1 Deltacontrols 2 Entelitouch, Entelitouch Firmware 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Delta Controls enteliTOUCH 3.40.3935, 3.40.3706, and 3.33.4005 was discovered to contain a cross-site scripting (XSS) vulnerability via the Username parameter. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
CVE-2019-9569 1 Deltacontrols 2 Entelibus, Entelibus Firmware 2024-11-21 7.5 HIGH 9.8 CRITICAL
Buffer Overflow in dactetra in Delta Controls enteliBUS Manager V3.40_B-571848 allows remote unauthenticated users to execute arbitrary code and possibly cause a denial of service via unspecified vectors.