GCVE - cpe:2.3:h:sprecher-automation:sprecon-e-c:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:sprecher-automation:sprecon-e-c:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Sprecher Automation (`d5ebcb13-01ce-5e1f-9dc2-6bb3560c77a5`)
Product	Sprecon E C (`ec28e056-84be-5016-b009-39ab1d4ca111`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-6758`	not_vulnerable	2026-06-03 14:58:04.066628	Improper Privilege Management vulnerability in Sprecher Automation SPRECON-E MEDIUM (6.5) Improper Privilege Management in Sprecher Automation SPRECON-E below version 8.71j allows a remote attacker with low privileges to save unauthorized protection assignments. Published: 2024-08-12T10:20:10.039Z Updated: 2025-08-22T09:00:03.779Z Open on db.gcve.eu Reference links https://www.sprecher-automation.com/fileadmin/itSecurity/PDF/SPR-2407171_de.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-4333`	not_vulnerable	2026-06-03 14:48:35.529810	Sprecher: Sprecon maintenance access with hardcoded credentials CRITICAL (9.8) Hardcoded Credentials in multiple SPRECON-E CPU variants of Sprecher Automation allows an remote attacker to take over the device. These accounts should be deactivated according to Sprecher's hardening guidelines. Published: 2023-06-01T05:36:22.128Z Updated: 2025-01-10T18:44:30.817Z Open on db.gcve.eu Reference links https://www.sprecher-automation.com/fileadmin/itSecurity/PDF/2022-12_Advisories.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-4332`	not_vulnerable	2026-06-03 14:48:35.523032	Sprecher: Vulnerable firmware verification MEDIUM (6.8) In Sprecher Automation SPRECON-E-C/P/T3 CPU in variant PU244x a vulnerable firmware verification has been identified. Through physical access and hardware manipulation, an attacker might be able to bypass hardware-based code verification and thus inject and execute arbitrary code and gain full access of the device. Published: 2023-06-01T05:36:28.688Z Updated: 2025-01-10T18:43:17.650Z Open on db.gcve.eu Reference links https://www.sprecher-automation.com/fileadmin/itSecurity/PDF/2022-12_Advisories.pdf	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.