Machinesense Feverwarn Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Machinesense Feverwarn Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2023-49617 — CVSS 10.0 (critical): The MachineSense application programmable interface (API) is improperly protected and can be accessed without authentication. A remote…
CVE-2023-47867 — CVSS 8.8 (high): MachineSense FeverWarn devices are configured as Wi-Fi hosts in a way that attackers within range could connect to the device's web…
CVE-2023-49610 — CVSS 8.1 (high): MachineSense FeverWarn Raspberry Pi-based devices lack input sanitization, which could allow an attacker on an adjacent network to send a…
CVE-2023-6221 — CVSS 7.7 (high): The cloud provider MachineSense uses for integration and deployment for multiple MachineSense devices, such as the programmable logic…
CVE-2023-49115 — CVSS 7.5 (high): MachineSense devices use unauthenticated MQTT messaging to monitor devices and remote viewing of sensor data by users.