Bret McDanel

4 exploits Active since Jun 2023
CVE-2023-25366 WRITEUP CRITICAL WRITEUP
Siglent SDS 1104X-E Firmware SDS1xx4X-E_V6.1.37R9.ADS - Unauthenticated Web Password Disclosure via SCPI Interface
In Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS, insecure SCPI interface discloses web password.
CVSS 9.8
CVE-2023-25367 WRITEUP CRITICAL WRITEUP
Siglent SDS1xx4X-E Firmware - Remote Code Execution via SCPI Interface or Web Server
Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS allows unfiltered user input resulting in Remote Code Execution (RCE) with SCPI interface or web server.
CVSS 9.8
CVE-2023-25368 WRITEUP HIGH WRITEUP
Siglent SDS 1104X-E - Incorrect Access Control
Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS is vulnerable to Incorrect Access Control. An unauthenticated attacker can overwrite firmnware.
CVSS 7.5
CVE-2023-25369 WRITEUP HIGH WRITEUP
Siglent SDS1xx4X-E Firmware V6.1.37R9.ADS - Denial of Service via Malformed SCPI Command
Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS is vulnerable to Denial of Service on the user interface triggered by malformed SCPI command.
CVSS 7.5