Kone Group Controller Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Kone Group Controller Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2018-15484 — CVSS 9.8 (critical): An issue was discovered on KONE Group Controller (KGC) devices before 4.6.5. Unauthenticated Remote Code Execution is possible through the…
CVE-2018-15485 — CVSS 9.1 (critical): An issue was discovered on KONE Group Controller (KGC) devices before 4.6.5. FTP does not require authentication or authorization, aka…
CVE-2018-15486 — CVSS 9.1 (critical): An issue was discovered on KONE Group Controller (KGC) devices before 4.6.5. Unauthenticated Local File Inclusion and File modification is…
CVE-2018-15483 — CVSS 7.5 (high): An issue was discovered on KONE Group Controller (KGC) devices before 4.6.5. Denial of Service can occur through the open HTTP interface…