Webhmi Webhmi Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Webhmi Webhmi Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2021-43936 — CVSS 10.0 (critical): The software allows the attacker to upload or transfer files of dangerous types to the WebHMI portal, that may be automatically processed…
CVE-2021-43931 — CVSS 9.8 (critical): The authentication algorithm of the WebHMI portal is sound, but the implemented mechanism can be bypassed as the result of a separate…
CVE-2022-2253 — CVSS 9.1 (critical): A user with administrative privileges in Distributed Data Systems WebHMI 4.1.1.7662 may send OS commands to execute on the host server.
CVE-2022-2254 — CVSS 6.2 (medium): A user with administrative privileges in Distributed Data Systems WebHMI 4.1.1.7662 can store a script that could impact other logged in…