CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2024-8891 – Exposure of Private Personal Information to an Unauthorized Actor vulnerability on CIRCUTOR Q-SMT
https://notcve.org/view.php?id=CVE-2024-8891
18 Sep 2024 — An attacker with no knowledge of the current users in the web application, could build a dictionary of potential users and check the server responses as it indicates whether or not the user is present in CIRCUTOR Q-SMT in its firmware version 1.0.4. • https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-circutor-products • CWE-359: Exposure of Private Personal Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-8890 – Insertion of Sensitive Information Into Sent Data vulnerability on CIRCUTOR Q-SMT
https://notcve.org/view.php?id=CVE-2024-8890
18 Sep 2024 — An attacker with access to the network where the CIRCUTOR Q-SMT is located in its firmware version 1.0.4, could obtain legitimate credentials or steal sessions due to the fact that the device only implements the HTTP protocol. This fact prevents a secure communication channel from being established. • https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-circutor-products • CWE-201: Insertion of Sensitive Information Into Sent Data •
CVSS: 9.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-8892 – Uncontrolled Resource Consumption vulnerability on CIRCUTOR TCP2RS+
https://notcve.org/view.php?id=CVE-2024-8892
18 Sep 2024 — Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify any configuration value, even if the device has the user/password authentication option enabled, without authentication by sending packets through the UDP protocol and port 2000, deconfiguring the device and thus disabling its use. This equipment is at the end of its useful life cycle. • https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-circutor-products • CWE-400: Uncontrolled Resource Consumption •
CVSS: 9.4EPSS: 0%CPEs: 2EXPL: 0CVE-2024-8889 – Improper Input Validation vulnerability on CIRCUTOR TCP2RS+
https://notcve.org/view.php?id=CVE-2024-8889
18 Sep 2024 — Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify any configuration value, even if the device has the user/password authentication option enabled, without authentication by sending packets through the UDP protocol and port 2000, deconfiguring the device and thus disabling its use. This equipment is at the end of its useful life cycle. • https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-circutor-products • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2024-8888 – Insufficient Session Expiration vulnerability on CIRCUTOR Q-SMT
https://notcve.org/view.php?id=CVE-2024-8888
18 Sep 2024 — An attacker with access to the network where CIRCUTOR Q-SMT is located in its firmware version 1.0.4, could steal the tokens used on the web, since these have no expiration date to access the web application without restrictions. Token theft can originate from different methods such as network captures, locally stored web information, etc. • https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-circutor-products • CWE-613: Insufficient Session Expiration •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2024-8887 – Authentication bypass vulnerability on CIRCUTOR Q-SMT
https://notcve.org/view.php?id=CVE-2024-8887
18 Sep 2024 — CIRCUTOR Q-SMT in its firmware version 1.0.4, could be affected by a denial of service (DoS) attack if an attacker with access to the web service bypasses the authentication mechanisms on the login page, allowing the attacker to use all the functionalities implemented at web level that allow interacting with the device. • https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-circutor-products • CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 8.1EPSS: 0%CPEs: 2EXPL: 0CVE-2022-1669 – Circutor COMPACT DC-S BASIC
https://notcve.org/view.php?id=CVE-2022-1669
24 May 2022 — A buffer overflow vulnerability has been detected in the firewall function of the device management web portal. The device runs a CGI binary (index.cgi) to offer a management web application. Once authenticated with valid credentials in this web portal, a potential attacker could submit any "Address" value and it would be copied to a second variable with a "strcpy" vulnerable function without checking its length. Because of this, it is possible to send a long address value to overflow the process stack, con... • https://www.cisa.gov/uscert/ics/advisories/icsa-22-137-01 • CWE-121: Stack-based Buffer Overflow •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2021-26777
https://notcve.org/view.php?id=CVE-2021-26777
02 Dec 2021 — Buffer overflow vulnerability in function SetFirewall in index.cgi in CIRCUTOR COMPACT DC-S BASIC smart metering concentrator Firwmare version CIR_CDC_v1.2.17, allows attackers to execute arbitrary code. Una vulnerabilidad de desbordamiento de búfer en la función SetFirewall en el archivo index.cgi en el concentrador de medición inteligente CIRCUTOR COMPACT DC-S BASIC versión CIR_CDC_v1.2.17, permite a atacantes ejecutar código arbitrario • https://github.com/Ell0/plc_concentrator_vulns • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2021-33841 – Circutor SGE-PLC1000 OS command Injection
https://notcve.org/view.php?id=CVE-2021-33841
09 Jun 2021 — SGE-PLC1000 device, in its 0.9.2b firmware version, does not handle some requests correctly, allowing a remote attacker to inject code into the operating system with maximum privileges. Un dispositivo SGE-PLC1000, en su versión de firmware 0.9.2b, no maneja algunas peticiónes correctamente, permitiendo a un atacante remoto inyectar código en el sistema operativo con máximos privilegios • https://www.incibe.es/en/incibe-cert/notices/aviso-sci/circutor-sge-plc1000-os-command-injection • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-33842 – Circutor SGE-PLC1000 improper authentication
https://notcve.org/view.php?id=CVE-2021-33842
09 Jun 2021 — Improper Authentication vulnerability in the cookie parameter of Circutor SGE-PLC1000 firmware version 0.9.2b allows an attacker to perform operations as an authenticated user. In order to exploit this vulnerability, the attacker must be within the network where the device affected is located. Una vulnerabilidad de Autenticación Inapropiada en el parámetro cookies de Circutor SGE-PLC1000 versión del firmware 0.9.2b, permite a un atacante llevar a cabo operaciones como un usuario autenticado. Para explo... • https://www.incibe.es/en/incibe-cert/notices/aviso-sci/circutor-sge-plc1000-improper-authentication • CWE-565: Reliance on Cookies without Validation and Integrity Checking •