ovarro

Top products

The 12 most recently published vulnerabilities affecting ovarro.

• CVE-2023-3395 ​All versions of the TWinSoft Configuration Tool store encrypted passwords as plaintext in memory. An attacker with access to system files could open a file to load the document into memory, inc...6.5Jul 3, 2023
• CVE-2023-36611 The affected TBox RTUs allow low privilege users to access software security tokens of higher privilege. This could allow an attacker with “user” privileges to access files requiring higher pr...6.5Jul 3, 2023
• CVE-2023-36610 ​The affected TBox RTUs generate software security tokens using insufficient entropy. The random seed used to generate the software tokens is not initialized correctly, and other parts of the to...5.9Jul 3, 2023
• CVE-2023-36609 The affected TBox RTUs run OpenVPN with root privileges and can run user defined configuration scripts. An attacker could set up a local OpenVPN server and push a malicious script onto the TBox ho...7.2Jul 3, 2023
• CVE-2023-36608 The affected TBox RTUs store hashed passwords using MD5 encryption, which is an insecure encryption algorithm.6.5Jul 3, 2023
• CVE-2023-36607CVE-2023-366075.3Jun 29, 2023
• CVE-2021-22646Ovarro TBox Code Injection8.8Jul 28, 2022
• CVE-2021-22644Ovarro TBox Use of Hard-coded Cryptographic Key7.5Jul 28, 2022
• CVE-2021-22648Ovarro TBox Incorrect Permission Assignment for Critical Resource8.8Jul 28, 2022
• CVE-2021-22650Ovarro TBox Relative Path Traversal7.5Jul 28, 2022
• CVE-2021-22640Ovarro TBox Insufficiently Protected Credentials7.5Jul 28, 2022
• CVE-2021-22642Ovarro TBox Uncontrolled Resource Consumption7.5Jul 28, 2022