Known Vulnerabilities for products from Redlion
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Redlion".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-34412 json | A vulnerability in Red Lion Europe mbNET/mbNET.rokey and Helmholz REX 200 and REX 250 devices with firmware lower 7.3.2 allow... | 5.4 - MEDIUM | 2023-08-17 | 2023-08-23 |
| CVE-2023-5719 json | The Crimson 3.2 Windows-based configuration tool allows users with administrative access to define new passwords for users a... | 9.8 - CRITICAL | 2023-11-06 | 2023-11-14 |
| CVE-2022-27179 json | A malicious actor having access to the exported configuration file may obtain the stored credentials and thereby gain access ... | 6.5 - MEDIUM | 2022-04-20 | 2022-04-28 |
| CVE-2022-26516 json | Authorized users may install a maliciously modified package file when updating the device via the web user interface. The use... | 7.8 - HIGH | 2022-04-20 | 2022-04-29 |
| CVE-2022-3090 json | Red Lion Controls Crimson 3.0 versions 707.000 and prior, Crimson 3.1 versions 3126.001 and prior, and Crimson 3.2 versions 3... | 5.3 - MEDIUM | 2022-11-17 | 2022-11-22 |
| CVE-2022-1039 json | The weak password on the web user interface can be exploited via HTTP or HTTPS. Once such access has been obtained, the other... | 9.8 - CRITICAL | 2022-04-20 | 2022-05-04 |
| CVE-2020-27285 json | The default configuration of Crimson 3.1 (Build versions prior to 3119.001) allows a user to be able to read and modify the d... | 9.1 - CRITICAL | 2021-01-06 | 2021-01-08 |
| CVE-2020-27283 json | An attacker could send a specially crafted message to Crimson 3.1 (Build versions prior to 3119.001) that could leak arbitrar... | 5.3 - MEDIUM | 2021-01-06 | 2021-01-08 |
| CVE-2020-27279 json | A NULL pointer deference vulnerability has been identified in the protocol converter. An attacker could send a specially craf... | 7.5 - HIGH | 2021-01-06 | 2021-01-08 |
| CVE-2020-16210 json | The affected product is vulnerable to reflected cross-site scripting, which may allow an attacker to remotely execute arbitra... | 9 - CRITICAL | 2020-09-01 | 2022-10-14 |
| CVE-2020-16208 json | The affected product is vulnerable to cross-site request forgery, which may allow an attacker to modify different configurati... | 8.8 - HIGH | 2020-09-01 | 2020-09-08 |
| CVE-2020-16206 json | The affected product is vulnerable to stored cross-site scripting, which may allow an attacker to remotely execute arbitrary ... | 9 - CRITICAL | 2020-09-01 | 2022-10-14 |
| CVE-2020-16204 json | The affected product is vulnerable due to an undocumented interface found on the device, which may allow an attacker to execu... | 9.8 - CRITICAL | 2020-09-01 | 2022-10-14 |
| CVE-2019-10996 json | Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vulnerabilities to ... | 7.8 - HIGH | 2019-09-23 | 2023-03-01 |
| CVE-2019-10990 json | Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, uses a hard-coded password to encr... | 6.5 - MEDIUM | 2019-09-23 | 2023-03-01 |
| CVE-2019-10984 json | Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vulnerabilities to ... | 7.8 - HIGH | 2019-09-23 | 2023-02-13 |
| CVE-2019-10978 json | Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vulnerabilities to ... | 7.8 - HIGH | 2019-09-23 | 2023-03-01 |
| CVE-2017-16544 json | In the add_match function in libbb/lineedit.c in BusyBox through 1.27.2, the tab autocomplete feature of the shell, used to g... | 8.8 - HIGH | 2017-11-20 | 2022-10-28 |
| CVE-2017-14855 json | Red Lion HMI panels allow remote attackers to cause a denial of service (software exception) via an HTTP POST request to a lo... | 8.6 - HIGH | 2017-12-30 | 2019-10-03 |
| CVE-2016-9335 json | A hard-coded cryptographic key vulnerability was identified in Red Lion Controls Sixnet-Managed Industrial Switches running f... | 10 - CRITICAL | 2018-05-09 | 2019-10-09 |
Known software with vulnerabilities from Redlion
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Redlion | Crimson | - |