Westermo L206-f2g Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Westermo L206-f2g Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2023-38579 — CVSS 8.0 (high): The cross-site request forgery token in the request may be predictable or easily guessable allowing attackers to craft a malicious request…
CVE-2023-45735 — CVSS 8.0 (high): A potential attacker with access to the Westermo Lynx device may be able to execute malicious code that could affect the correct…
CVE-2023-45213 — CVSS 6.6 (medium): A potential attacker with access to the Westermo Lynx device would be able to execute malicious code that could affect the correct…
CVE-2023-40544 — CVSS 5.7 (medium): An attacker with access to the network where the affected devices are located could maliciously actions to obtain, via a sniffer, sensitive…
CVE-2023-42765 — CVSS 5.4 (medium): An attacker with access to the vulnerable software could introduce arbitrary JavaScript by injecting a cross-site scripting payload into…
CVE-2023-45222 — CVSS 5.4 (medium): An attacker with access to the web application that has the vulnerable software could introduce arbitrary JavaScript by injecting a…
CVE-2023-45227 — CVSS 5.4 (medium): An attacker with access to the web application with vulnerable software could introduce arbitrary JavaScript by injecting a cross-site…
CVE-2023-40143 — CVSS 5.4 (medium): An attacker with access to the Westermo Lynx web application that has the vulnerable software could introduce arbitrary JavaScript by…