CVE-2019-13526

HIGH

Datalogic AV7000 Firmware < 4.6.0.0 - Authentication Bypass

Title source: llm
STIX 2.1

Description

Datalogic AV7000 Linear barcode scanner all versions prior to 4.6.0.0 is vulnerable to authentication bypass, which may allow an attacker to remotely execute arbitrary code.

References (1)

Core 1
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://www.us-cert.gov/ics/advisories/icsa-19-239-02

Scores

CVSS v3 8.8
EPSS 0.0237
EPSS Percentile 81.6%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-287 CWE-288
Status published
Products (1)
datalogic/av7000_firmware < 4.6.0.0
Published Aug 30, 2019
Tracked Since Feb 18, 2026