Loxone Miniserver Go Gen 2 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Loxone Miniserver Go Gen 2 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2023-36623 — CVSS 7.8 (high): The root password of the Loxone Miniserver Go Gen.2 before 14.2 is calculated using hard-coded secrets and the MAC address. This allows a…
CVE-2023-36624 — CVSS 7.8 (high): Loxone Miniserver Go Gen.2 through 14.0.3.28 allows an authenticated operating system user to escalate privileges via the Sudo…
CVE-2023-36622 — CVSS 7.2 (high): The websocket configuration endpoint of the Loxone Miniserver Go Gen.2 before 14.1.5.9 allows remote authenticated administrators to inject…