redlion

Top products

The 15 most recently published vulnerabilities affecting redlion.

• CVE-2023-5719Red Lion Crimson Improper Neutralization of Null Byte or NUL Character8.8Nov 6, 2023
• CVE-2023-34412Stored XXS vulnerability in mbnet, mbnet.rokey, REX 200 and REX 2504.8Aug 17, 2023
• CVE-2022-3090Red Lion Controls Crimson 3.0 versions 707.000 and prior, Crimson 3.1 versions 3126.001 and prior, and Crimson 3.2 versions 3.2.0044.0 and prior are vulnerable to path traversal. When attempting to...7.5Nov 17, 2022
• CVE-2022-1039ICSA-22-104-03 Red Lion DA50N9.6Apr 20, 2022
• CVE-2022-26516ICSA-22-104-03 Red Lion DA50N8.4Apr 20, 2022
• CVE-2022-27179ICSA-22-104-03 Red Lion DA50N4.6Apr 20, 2022
• CVE-2020-27283An attacker could send a specially crafted message to Crimson 3.1 (Build versions prior to 3119.001) that could leak arbitrary memory locations.5.3Jan 6, 2021
• CVE-2020-27279A NULL pointer deference vulnerability has been identified in the protocol converter. An attacker could send a specially crafted packet that could reboot the device running Crimson 3.1 (Build versi...7.5Jan 6, 2021
• CVE-2020-27285The default configuration of Crimson 3.1 (Build versions prior to 3119.001) allows a user to be able to read and modify the database without authentication.9.1Jan 6, 2021
• CVE-2020-16204The affected product is vulnerable due to an undocumented interface found on the device, which may allow an attacker to execute commands as root on the device on the N-Tron 702-W / 702M12-W (all ve...9.8Sep 1, 2020
• CVE-2020-16210The affected product is vulnerable to reflected cross-site scripting, which may allow an attacker to remotely execute arbitrary code and perform actions in the context of an attacked user on the N-...9.0Sep 1, 2020
• CVE-2020-16208The affected product is vulnerable to cross-site request forgery, which may allow an attacker to modify different configurations of a device by luring an authenticated user to click on a crafted li...8.8Sep 1, 2020
• CVE-2020-16206The affected product is vulnerable to stored cross-site scripting, which may allow an attacker to remotely execute arbitrary code to gain access to sensitive data on the N-Tron 702-W / 702M12-W (al...9.0Sep 1, 2020
• CVE-2019-10984Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vulnerabilities to be exploited when a valid user opens a specially crafted, malicious inpu...7.8Sep 23, 2019
• CVE-2019-10978Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vulnerabilities to be exploited when a valid user opens a specially crafted, malicious inpu...7.8Sep 23, 2019