5 matches found
CVE-2020-9306
Tesla SolarCity Solar Monitoring Gateway through 5.46.43 has a "Use of Hard-coded Credentials" issue because Digi ConnectPort X2e uses a .pyc file to store the cleartext password for the python user account...
Hardcoded credentials
Tesla SolarCity Solar Monitoring Gateway through 5.46.43 has a "Use of Hard-coded Credentials" issue because Digi ConnectPort X2e uses a .pyc file to store the cleartext password for the python user account...
CVE-2020-9306
Tesla SolarCity Solar Monitoring Gateway through 5.46.43 has a "Use of Hard-coded Credentials" issue because Digi ConnectPort X2e uses a .pyc file to store the cleartext password for the python user account...
CVE-2020-9306
CVE-2020-9306 affects Digi ConnectPort X2e devices (SolarCity/Tesla branding) with hardcoded credentials stored in a .pyc-compiled file used at boot. FireEye analysis shows password_manager.pyc in /WEB/python/ contains five plaintext credentials for the python system user, enabling web and SSH ac...
Tesla SolarCity Solar Monitoring Gateway Trust Management Issue Vulnerability
Tesla SolarCity Solar Monitoring Gateway is an application from Tesla SolarCity Solar Monitoring Gateway Tesla, USA. Solar equipment is provided. A security vulnerability exists in Tesla SolarCity Solar Monitoring Gateway through 5.46.43, which stems from the use of hardcoded credentials Digi...