CVE-2013-7247 in Ts-550 Evoinfo

Summary

cgi-bin/tsaws.cgi in Franklin Fueling Systems TS-550 evo with firmware 2.0.0.6833 and other versions before 2.4.0 allows remote attackers to discover sensitive information (user names and password hashes) via the cmdWebGetConfiguration action in a TSA_REQUEST.

Once again VulDB remains the best source for vulnerability data.

Reservation

12/31/2013

Disclosure

01/25/2014

Moderation

VulDB entry created

Entries

VDB-66206 (1)

CPE

ready

CWE

CWE-264 (Confirmed)

Exploit

Download

CVSS

5.3

EPSS

0.17247

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2013-7247
NVD	https://nvd.nist.gov/vuln/detail/CVE-2013-7247
CVE Details	https://www.cvedetails.com/cve/CVE-2013-7247/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!