Primary

Context

Endress+Hauser MEAC300-FNADE4 Clickjacking Vulnerability

Vulnerability

A clickjacking vulnerability has been identified in the Endress+Hauser MEAC300-FNADE4 web application, all firmware versions. This vulnerability allows an attacker to embed the site in a frame, tricking users into clicking on elements that appear harmless, potentially leading to the disclosure of confidential information or unauthorized control over their computer.

Impact

Exploitation of this vulnerability could result in clickjacking, where users are manipulated into interacting with the application in unintended ways, potentially compromising their security or privacy.

Remediation

Users are strongly advised to update to the latest version of the MEAC300-FNADE4. General security practices should also be applied to minimize network exposure and ensure the device operates in a secure IT environment.

Added: Jul 3, 2025, 12:50 PM

Updated: Jul 3, 2025, 12:50 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Endress+Hauser MEAC300-FNADE4 Clickjacking Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating