Approved changes feed: RSS · Atom

cpe:2.3:o:martem:telem-gwm_firmware:*:*:*:*:*:*:*:*

part: o version: * update: *

VendorMartem (0997d3c7-c43e-5605-b480-516438ba499c)
ProductTelem Gwm Firmware (597eaa40-65c2-564e-8903-91ea140f537c)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2018-10609 vulnerable 2026-06-08 05:10:35.172354 Details available
Martem TELEM GW6 and GWM devices with firmware 2018.04.18-linux_4-01-601cb47 and prior allow improper sanitization of data over a Websocket which may allow cross-site scripting and client-side code execution with target user privileges.
Published: 2018-07-31T17:00:00.000Z
Updated: 2024-09-16T18:34:17.545Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-10607 vulnerable 2026-06-08 05:10:35.171649 Details available
Martem TELEM GW6 and GWM devices with firmware 2018.04.18-linux_4-01-601cb47 and prior allow the creation of new connections to one or more IOAs, without closing them properly, which may cause a denial of service within the industrial process control channel.
Published: 2018-07-31T17:00:00.000Z
Updated: 2024-09-16T21:57:37.516Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-10605 vulnerable 2026-06-08 05:10:35.170624 Details available
Martem TELEM GW6/GWM versions prior to 2.0.87-4018403-k4 may allow unprivileged users to modify/upload a new system configuration or take the full control over the RTU using default credentials to connect to the RTU.
Published: 2018-10-01T16:00:00.000Z
Updated: 2024-09-17T00:30:58.741Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-10603 vulnerable 2026-06-08 05:10:35.165534 Details available
Martem TELEM GW6 and GWM devices with firmware 2018.04.18-linux_4-01-601cb47 and prior do not perform authentication of IEC-104 control commands, which may allow a rogue node a remote control of the industrial process.
Published: 2018-07-31T17:00:00.000Z
Updated: 2024-09-17T00:21:23.117Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.