Meinberg LANTIME M900
Approved changes feed: RSS · Atom
cpe:2.3:h:meinbergglobal:lantime_m900:-:*:*:*:*:*:*:*
part: h version: - update: *
| Vendor | Meinbergglobal (a276db4f-0f7b-561a-98d1-59eaefe48ddd) |
|---|---|
| Product | Lantime M900 (c65bd049-cd1b-5e30-b54e-aecf7f904f8f) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-1731 |
not_vulnerable | 2026-06-03 14:48:56.355694 |
Improper Input Validation in Meinberg LTOS
HIGH (7.2)
In Meinbergs LTOS versions prior to V7.06.013, the configuration file upload function would not correctly validate the input, which would allow an remote authenticated attacker with high privileges to execute arbitrary commands.
Published: 2023-04-24T13:36:03.117Z
Updated: 2025-02-04T19:16:58.162Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-16786 |
not_vulnerable | 2026-06-03 14:36:48.639156 |
Details available
The Web Configuration Utility in Meinberg LANTIME devices with firmware before 6.24.004 allows remote authenticated users with certain privileges to read arbitrary files via (1) the ntpclientcounterlogfile parameter to cgi-bin/mainv2 or (2) vectors involving curl support of the "file" schema in the firmware update functionality.
Published: 2017-12-19T15:00:00.000Z
Updated: 2024-08-05T20:35:20.950Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.