Festo Servo Press Kit YJKP- Firmware 3.8.14

CPE Details

Festo Servo Press Kit YJKP- Firmware 3.8.14
festo
servo_press_kit_yjkp-_firmware
3.8.14
2022-06-16
10h44 +00:00
2022-06-24
13h55 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:o:festo:servo_press_kit_yjkp-_firmware:3.8.14:*:*:*:*:*:*:*

Informations

Vendor

festo

Product

servo_press_kit_yjkp-_firmware

Version

3.8.14

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2022-30311 2022-06-13 13h45 +00:00 In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-refresh-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.
9.8
Critique
CVE-2022-30310 2022-06-13 13h45 +00:00 In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-acknerr-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.
9.8
Critique
CVE-2022-30309 2022-06-13 13h45 +00:00 In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web-viewer-request-off" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.
9.8
Critique
CVE-2022-30308 2022-06-13 13h45 +00:00 In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web-viewer-request-on" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.
9.8
Critique