Arteche Satech Bcu Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Arteche Satech Bcu Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2025-2859 — CVSS 9.8 (critical): An attacker with network access, could capture traffic and obtain user cookies, allowing the attacker to steal the active user session and…
CVE-2025-2858 — CVSS 8.8 (high): Privilege escalation vulnerability in the saTECH BCU firmware version 2.1.3. An attacker with access to the CLI of the device could make…
CVE-2025-2863 — CVSS 7.8 (high): Cross-site request forgery (CSRF) vulnerability in the web application of saTECH BCU firmware version 2.1.3, which could allow an…
CVE-2025-2862 — CVSS 7.5 (high): SaTECH BCU, in its firmware version 2.1.3, performs weak password encryption. This allows an attacker with access to the device's system or…
CVE-2025-2861 — CVSS 7.5 (high): SaTECH BCU in its firmware version 2.1.3 uses the HTTP protocol. The use of the HTTP protocol for web browsing has the problem that…
CVE-2025-2864 — CVSS 6.1 (medium): SaTECH BCU in its firmware version 2.1.3 allows an attacker to inject malicious code into the legitimate website owning the affected…
CVE-2025-2865 — CVSS 6.1 (medium): SaTECH BCU, in its firmware version 2.1.3, could allow XSS attacks and other malicious resources to be stored on the web server. An…
CVE-2025-2860 — CVSS 5.3 (medium): SaTECH BCU in its firmware version 2.1.3, allows an authenticated attacker to access information about the credentials that users have…