Primary

Context

Frauscher FDS Command Injection Vulnerability Allowing Full Control of Affected Devices

Vulnerability

Patched

A command injection vulnerability has been identified in Frauscher products FDS101, FDS-SNMP101, and FDS102 (for FAdC/FAdCi R2 and all previous versions). This vulnerability allows a remote attacker with an administrator account to gain full control of the device by exploiting improper handling of special characters during the upload of configuration files via the web interface.

Impact

Exploitation of this vulnerability allows for full control over the affected device.

Remediation

Users are advised to update FDS102 to version 2.13.3. For FDS101 and FDS-SNMP101, ensure that only authorized personnel have access to the system.

Added: Jul 7, 2025, 10:26 AM

Updated: Jul 7, 2025, 10:26 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.8

remediation

7.9

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.8

remediation

7.9

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Frauscher FDS Command Injection Vulnerability Allowing Full Control of Affected Devices

Vulnerability

Impact

Remediation

Affected Products

Frauscher FDS101

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating