Vulnerabilities in Rexroth
35 resultsCVE-2023-48247MEDIUMThe vulnerability allows an unauthenticated remote attacker to read arbitrary files under the context of the application OS user (“root”) viEPSS 0.6%CVE-2023-48251HIGHThe vulnerability allows a remote attacker to authenticate to the SSH service with root privileges through a hidden hard-coded account.EPSS 0.6%CVE-2023-48257HIGHThe vulnerability allows a remote attacker to access sensitive data inside exported packages or obtain up to Remote Code Execution (RCE) witEPSS 0.5%CVE-2023-48255MEDIUMThe vulnerability allows an unauthenticated remote attacker to send malicious network requests containing arbitrary client-side script code EPSS 0.5%CVE-2023-48248MEDIUMThe vulnerability allows an authenticated remote attacker to upload a malicious file to the SD card containing arbitrary client-side script EPSS 0.4%CVE-2023-41255HIGHThe vulnerability allows an unprivileged user with access to the subnet of the TPC-110W device to gain a root shell on the device itself abuEPSS 0.4%CVE-2023-45220HIGHThe Android Client application, when enrolled with the define method 1(the user manually inserts the server ip address), use HTTP protocol tEPSS 0.4%CVE-2023-45844HIGHThe vulnerability allows a low privileged user that have access to the device when locked in Kiosk mode to install an arbitrary Android applEPSS 0.3%CVE-2023-48254MEDIUMThe vulnerability allows a remote attacker to inject and execute arbitrary client-side script code inside a victim’s session via a crafted UEPSS 0.3%CVE-2023-48244MEDIUMThe vulnerability allows a remote attacker to inject and execute arbitrary client-side script code inside a victim’s session via a crafted UEPSS 0.3%CVE-2023-48256MEDIUMThe vulnerability allows a remote attacker to inject arbitrary HTTP response headers or manipulate HTTP response bodies inside a victim’s seEPSS 0.3%CVE-2023-48258MEDIUMThe vulnerability allows a remote attacker to delete arbitrary files on the file system via a crafted URL or HTTP
request through a victim’EPSS 0.2%CVE-2023-41372HIGHThe vulnerability allows an unprivileged (untrusted) third- party application to arbitrary modify the server settings of the Android Client EPSS 0.2%CVE-2023-43488HIGHThe vulnerability allows a low privileged (untrusted) application to
modify a critical system property that should be denied, in order to eEPSS 0.2%CVE-2023-41960HIGHThe vulnerability allows an unprivileged(untrusted) third-party application to interact with a content-provider unsafely exposed by the AndrEPSS 0.2%