Net Vision
Approved changes feed: RSS · Atom
cpe:2.3:a:socomec:net_vision:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Socomec (b2889dfa-9d82-58cf-9a0a-02ccbb62a6ab) |
|---|---|
| Product | Net Vision (18010e43-2c99-5cea-94e3-1f99edc184ad) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-4601 |
vulnerable | 2026-06-08 06:50:18.237212 |
Improper Authentication vulnerability in Socomec Net Vision
MEDIUM (6.7)
An incorrect authentication vulnerability has been found in Socomec Net Vision affecting version 7.20. This vulnerability allows an attacker to perform a brute force attack on the application and recover a valid session, because the application uses a five-digit integer value.
Published: 2024-05-07T11:31:41.772Z
Updated: 2024-08-01T20:47:41.395Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4600 |
vulnerable | 2026-06-08 06:50:18.236617 |
Cross-Site Request Forgery vulnerability in Socomec Net Vision
HIGH (7.1)
Cross-Site Request Forgery vulnerability in Socomec Net Vision, version 7.20. This vulnerability could allow an attacker to trick registered users into performing critical actions, such as adding and updating accounts, due to lack of proper sanitisation of the ‘set_param.cgi’ file.
Published: 2024-05-07T11:30:09.045Z
Updated: 2024-08-01T20:47:41.220Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-0356 |
vulnerable | 2026-06-08 05:52:04.798083 |
Details available
MEDIUM (5.7)
SOCOMEC MODULYS GP Netvision versions 7.20 and prior lack strong encryption for credentials on HTTP connections, which could result in threat actors obtaining sensitive information.
Published: 2023-01-24T18:40:13.224Z
Updated: 2025-01-16T21:59:10.866Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.