Version 0.0.0

CVE-2024-41974

A low privileged remote attacker may modify the BACNet service properties due to incorrect permission assignment for critical resources which may lead to a DoS limited to BACNet communication.

HIGH CVSS 7.1 Published Nov 18, 2024

CVE-2024-41973

A low privileged remote attacker can specify an arbitrary file on the filesystem which may lead to an arbitrary file writes with root privileges.

HIGH CVSS 8.1 Published Nov 18, 2024

CVE-2024-41972

A low privileged remote attacker can overwrite an arbitrary file on the filesystem which may lead to an arbitrary file read with root privileges.

MEDIUM CVSS 6.5 Published Nov 18, 2024

CVE-2024-41971

A low privileged remote attacker can overwrite an arbitrary file on the filesystem leading to a DoS and data loss.

HIGH CVSS 8.1 Published Nov 18, 2024

CVE-2024-41970

A low privileged remote attacker may gain access to forbidden diagnostic data due to incorrect permission assignment for critical resources.

MEDIUM CVSS 5.7 Published Nov 18, 2024

CVE-2024-41969

A low privileged remote attacker may modify the configuration of the CODESYS V3 service through a missing authentication vulnerability which could lead to full system access and/or DoS.

HIGH CVSS 8.8 Published Nov 18, 2024

CVE-2024-41967

A low privileged remote attacker may modify the boot mode configuration setup of the device, leading to modification of the firmware upgrade process or a denial-of-service attack.

HIGH CVSS 8.1 Published Nov 18, 2024

CVE-2024-41968

A low privileged remote attacker may modify the docker settings setup of the device, leading to a limited DoS.

MEDIUM CVSS 6.5 Published Nov 18, 2024