A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The webserver of the affected products allows unvalidated files to be uploaded, which an attacker could utilize to execute arbitrary code.
2021-05-20T12:15:08.120
2024-11-21T05:58:02.000
Modified
CVSSv3.1: 9.8 (CRITICAL)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | emerson | x-stream_enhanced_xegp_firmware | * | Yes |
| Hardware | emerson | x-stream_enhanced_xegp | - | No |
| Operating System | emerson | x-stream_enhanced_xegk_firmware | * | Yes |
| Hardware | emerson | x-stream_enhanced_xegk | - | No |
| Operating System | emerson | x-stream_enhanced_xefd_firmware | * | Yes |
| Hardware | emerson | x-stream_enhanced_xefd | - | No |
| Operating System | emerson | x-stream_enhanced_xexf_firmware | * | Yes |
| Hardware | emerson | x-stream_enhanced_xexf | - | No |