Filtered by vendor Easyio Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2018-15820 1 Easyio 2 Easyio 30p, Easyio 30p Firmware 2024-11-21 6.1 Medium
EasyIO EasyIO-30P devices before 2.0.5.27 allow XSS via the dev.htm GDN parameter.
CVE-2018-15819 1 Easyio 2 Easyio 30p, Easyio 30p Firmware 2024-11-21 7.5 High
EasyIO EasyIO-30P devices before 2.0.5.27 have Incorrect Access Control, related to webuser.js.
CVE-2015-3974 1 Easyio 2 Easyio-30p-sf, Easyio-30p-sf Firmware 2024-11-21 N/A
EasyIO EasyIO-30P-SF controllers with firmware before 0.5.21 and 2.x before 2.0.5.21, as used in Accutrol, Bar-Tech Automation, Infocon/EasyIO, Honeywell Automation India, Johnson Controls, SyxthSENSE, Transformative Wave Technologies, Tridium Asia Pacific, and Tridium Europe products, have a hardcoded password, which makes it easier for remote attackers to obtain access via unspecified vectors.