Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Dl8000_firmware
(Emerson)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-08-02 | CVE-2023-1935 | ROC800-Series RTU devices are vulnerable to an authentication bypass, which could allow an attacker to gain unauthorized access to data or control of the device and cause a denial-of-service condition. | Dl8000_firmware, Roc809_firmware, Roc809l_firmware, Roc827_firmware, Roc827l_firmware | 9.4 | ||
| 2022-08-16 | CVE-2022-30264 | The Emerson ROC and FloBoss RTU product lines through 2022-05-02 perform insecure filesystem operations. They utilize the ROC protocol (4000/TCP, 5000/TCP) for communications between a master terminal and RTUs. Opcode 203 of this protocol allows a master terminal to transfer files to and from the flash filesystem and carrying out arbitrary file and directory read, write, and delete operations. | Dl8000_firmware, Fb3000_rtu_firmware, Roc800l_firmware, Roc809_firmware, Roc827_firmware | 9.8 |