Multisuns Easylog Web+ Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Multisuns Easylog Web+ Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2023-48388 — CVSS 9.8 (critical): Multisuns EasyLog web+ has a vulnerability of using hard-coded credentials. An remote attacker can exploit this vulnerability to access the…
CVE-2023-48390 — CVSS 9.8 (critical): Multisuns EasyLog web+ has a code injection vulnerability. An unauthenticated remote attacker can exploit this vulnerability to inject code…
CVE-2023-48389 — CVSS 7.5 (high): Multisuns EasyLog web+ has a path traversal vulnerability within its parameter in a specific URL. An unauthenticated remote attacker can…