📦 Riskterminator
by Ecoa
🔍 What is Riskterminator?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
ECOA BAS controller has an authentication bypass vulnerability where unauthenticated attackers can manipulate cookies to bypass authentication. This allows remote attackers to access sensitive informa...
ECOA BAS controller has an unauthenticated path traversal vulnerability that allows remote attackers to delete arbitrary files via a specific GET parameter. This can lead to denial of service by delet...
ECOA BAS controllers use weak default administrative credentials that can be easily guessed in remote password attacks, allowing attackers to gain full control of the system. This affects all systems ...
ECOA BAS controllers contain hard-coded credentials in their Linux distribution image, allowing remote attackers to gain administrator privileges without authentication. This affects all systems runni...
The ECOA BAS controller has an insecure direct object reference vulnerability that allows unauthenticated attackers to access configuration files via HTTP GET requests. This exposes sensitive informat...
CVE-2021-41291 is a path traversal vulnerability in ECOA BAS controllers that allows unauthenticated attackers to remotely disclose directory contents via the File Manager's GET parameter. This affect...
The ECOA BAS controller has an insecure direct object reference vulnerability that allows authenticated users to bypass authorization and access hidden system resources. Attackers with general user pr...