Filtered by vendor Exemys
Subscribe
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-2197 | 1 Exemys | 2 Rme1, Rme1 Firmware | 2024-02-28 | 10.0 HIGH | 9.8 CRITICAL |
By using a specific credential string, an attacker with network access to the device’s web interface could circumvent the authentication scheme and perform administrative operations. | |||||
CVE-2015-7910 | 1 Exemys | 1 Telemetry Web Server | 2024-02-28 | 7.8 HIGH | N/A |
Exemys Telemetry Web Server relies on an HTTP Location header to indicate that a client is unauthorized, which allows remote attackers to bypass intended access restrictions by disregarding this header and processing the response body. |