C. Svoboda

Researcher fromSEC Consult Vulnerability Lab
#6157of 53,633
44.2Total CVSS
Vulnerabilities · 5
Medium
1
High
2
Critical
2
PT-2020-12944
10
2020-07-14
Rittal · Rittal Cmciii-Pu-9333E0Fb · CVE-2020-11951
**Name of the Vulnerable Software and Affected Versions** Rittal PDU-3C002DEC versions through 5.17.10 Rittal CMCIII-PU-9333E0FB versions through 3.17.10 **Description** An issue was discovered on Rittal devices, where there is a backdoor root account. **Recommendations** For Rittal PDU-3C002DEC versions through 5.17.10, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Rittal CMCIII-PU-9333E0FB versions through 3.17.10, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2020-12945
6.2
2020-07-14
Rittal · Rittal Cmciii-Pu-9333E0Fb · CVE-2020-11952
**Name of the Vulnerable Software and Affected Versions** Rittal PDU-3C002DEC versions through 5.17.10 Rittal CMCIII-PU-9333E0FB versions through 3.17.10 **Description** An issue was discovered that allows attackers to bypass the CLI menu. **Recommendations** For Rittal PDU-3C002DEC versions through 5.17.10, update to a version that addresses the CLI menu bypass issue. For Rittal CMCIII-PU-9333E0FB versions through 3.17.10, update to a version that addresses the CLI menu bypass issue.
PT-2020-12946
9.0
2020-07-14
Rittal · Rittal Cmciii-Pu-9333E0Fb · CVE-2020-11953
**Name of the Vulnerable Software and Affected Versions** Rittal PDU-3C002DEC versions 5.15.40 and earlier Rittal CMCIII-PU-9333E0FB versions 3.15.70 4 and earlier **Description** An issue was discovered that allows attackers to execute code. **Recommendations** For Rittal PDU-3C002DEC versions 5.15.40 and earlier, update to a version later than 5.15.40. For Rittal CMCIII-PU-9333E0FB versions 3.15.70 4 and earlier, update to a version later than 3.15.70 4.
PT-2020-12947
9.0
2020-07-14
Rittal · Rittal Pdu · CVE-2020-11955
**Name of the Vulnerable Software and Affected Versions** Rittal PDU devices versions 3C002DEC through 5.15.70 Rittal CMCIII-PU devices versions 9333E0FB through 3.15.70 **Description** An issue was discovered related to insecure permissions on the affected devices. **Recommendations** For Rittal PDU devices versions 3C002DEC through 5.15.70, update the device to a version with secure permissions. For Rittal CMCIII-PU devices versions 9333E0FB through 3.15.70, update the device to a version with secure permissions.
PT-2020-12948
10
2020-07-14
Rittal · Rittal Pdu · CVE-2020-11956
**Name of the Vulnerable Software and Affected Versions** Rittal PDU devices versions 3C002DEC through 5.17.10 Rittal CMCIII-PU devices versions 9333E0FB through 3.17.10 **Description** An issue was discovered that involves a least privilege violation. **Recommendations** For Rittal PDU devices versions 3C002DEC through 5.17.10, update to a version that addresses the least privilege violation issue. For Rittal CMCIII-PU devices versions 9333E0FB through 3.17.10, update to a version that addresses the least privilege violation issue.