CVE-2012-1808

Koyo H0-ecom - Authentication Bypass

Title source: rule

Description

The web server in the ECOM Ethernet module in Koyo H0-ECOM, H0-ECOM100, H2-ECOM, H2-ECOM-F, H2-ECOM100, H4-ECOM, H4-ECOM-F, and H4-ECOM100 does not require authentication, which allows remote attackers to perform unspecified functions via unknown vectors.

References (2)

[US Government Resource] http://www.us-cert.gov/control_systems/pdf/ICSA-12-102-02.pdf

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/74878

Scores

EPSS 0.0104

EPSS Percentile 77.2%

Classification

CWE

CWE-287

Status draft

Affected Products (8)

koyo/h0-ecom

koyo/h0-ecom100

koyo/h2-ecom

koyo/h2-ecom-f

koyo/h2-ecom100

koyo/h4-ecom

koyo/h4-ecom-f

koyo/h4-ecom100

Timeline

Published Apr 13, 2012

Tracked Since Feb 18, 2026