Known Vulnerabilities for Ak-em100 by Danfoss
Listed below are 7 of the newest known vulnerabilities associated with "Ak-em100" by "Danfoss".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-25912 json | The webreport generation feature in the Danfoss AK-EM100 allows an unauthorized actor to generate a web report that discloses... | 5.3 - MEDIUM | 2023-06-11 | 2023-06-16 |
| CVE-2023-25911 json | The Danfoss AK-EM100 web applications allow for OS command injection through the web application parameters. | 9.8 - CRITICAL | 2023-06-11 | 2023-06-16 |
| CVE-2023-22586 json | The Danfoss AK-EM100 web applications allow for Local File Inclusion in the file parameter. | 7.5 - HIGH | 2023-06-11 | 2023-06-16 |
| CVE-2023-22585 json | The Danfoss AK-EM100 web applications allow for Reflected Cross-Site Scripting in the title parameter. | 6.1 - MEDIUM | 2023-06-11 | 2023-06-16 |
| CVE-2023-22584 json | The Danfoss AK-EM100 stores login credentials in cleartext. | 7.5 - HIGH | 2023-06-11 | 2023-06-16 |
| CVE-2023-22583 json | The Danfoss AK-EM100 web forms allow for SQL injection in the login forms. | 9.8 - CRITICAL | 2023-06-11 | 2023-06-16 |
| CVE-2023-22582 json | The Danfoss AK-EM100 web applications allow for Reflected Cross-Site Scripting. | 6.1 - MEDIUM | 2023-06-11 | 2023-06-16 |