CVE-2024-46603

High CVSS: 7.5

An XML External Entity (XXE) vulnerability in Elspec Engineering G5 Digital Fault Recorder Firmware v1.2.1.12 allows attackers to cause a Denial of Service (DoS) via a crafted XML payload.

Vendor

Elspec-ltd

Product

G5dfr Firmware

CWE

CWE-611

Yayın Tarihi

2025-01-07 16:15:34

Güncelleme

2025-04-16 15:14:11

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-611 G5dfr Firmware HIGH Elspec-ltd 2025

Referanslar

https://www.elspec-ltd.com/support/security-advisories/

Benzer Kayıtlar

Medium

CVE-2025-59392

On Elspec G5 devices through 1.2.2.19, a person with physical access to the device can reset the Admin password by inser…

High

CVE-2024-46601

Elspec Engineering G5 Digital Fault Recorder Firmware v1.2.1.12 was discovered to contain a buffer overflow.

High

CVE-2024-46602

An issue was discovered in Elspec G5 digital fault recorder version 1.2.1.12 and earlier. An XML External Entity (XXE) v…