Omninova Vobot Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Omninova Vobot Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2018-6825 — CVSS 9.8 (critical): An issue was discovered on VOBOT CLOCK before 0.99.30 devices. An SSH server exists with a hardcoded vobot account that has root access.
CVE-2018-6827 — CVSS 8.1 (high): VOBOT CLOCK before 0.99.30 devices do not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof…
CVE-2018-6826 — CVSS 7.5 (high): An issue was discovered on VOBOT CLOCK before 0.99.30 devices. Cleartext HTTP is used to download a breakout program, and therefore…