Lucene search
K

146 matches found

Cvelist
Cvelist
added 2022/06/09 10:35 p.m.20 views

CVE-2017-20020 Solare Solar-Log cross-site request forgery

A vulnerability, which was classified as problematic, has been found in Solare Solar-Log 2.8.4-56/3.5.2-85. Affected by this issue is some unknown functionality. The manipulation leads to cross site request forgery. The attack may be launched remotely. Upgrading to version 3.5.3-86 is able to...

5.3CVSS8.6AI score0.00377EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/06/09 10:35 p.m.7 views

CVE-2017-20019 Solare Solar-Log Config information disclosure

A vulnerability classified as problematic was found in Solare Solar-Log 2.8.4-56/3.5.2-85. Affected by this vulnerability is an unknown functionality of the component Config Handler. The manipulation leads to information disclosure. The attack can be launched remotely. Upgrading to version 3.5.3-...

4.3CVSS7.5AI score0.00995EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/06/09 10:35 p.m.23 views

CVE-2017-20019 Solare Solar-Log Config information disclosure

A vulnerability classified as problematic was found in Solare Solar-Log 2.8.4-56/3.5.2-85. Affected by this vulnerability is an unknown functionality of the component Config Handler. The manipulation leads to information disclosure. The attack can be launched remotely. Upgrading to version 3.5.3-...

4.3CVSS7.4AI score0.00995EPSS
Exploits1References2
CVE
CVE
added 2022/06/09 10:35 p.m.54 views

CVE-2017-20019

CVE-2017-20019 affects Solare Solar-Log firmware versions 2.8.4-56 and 3.5.2-85, where an unknown function in the Config Handler can be manipulated to disclose information. The vulnerability enables remote exploitation with no authentication and no user interaction, leading to information disclos...

7.5CVSS5.7AI score0.00995EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2022/06/09 12:0 a.m.5 views

Solar-Log GmbH 安全漏洞

Solar-Log GmbH is a data logger for monitoring photovoltaic power plants from Solar-Log GmbH, Germany. A security vulnerability exists in Solar-Log GmbH versions 2.8.4-56 and 3.5.2-85, which stems from an unknown function of the component configuration handler. An attacker could exploit the...

7.5CVSS7.2AI score0.00995EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/06/09 12:0 a.m.4 views

Solar-Log GmbH 安全漏洞

Solar-Log GmbH is a data logger for monitoring photovoltaic PV power plants from the German company Solar-Log. A security vulnerability exists in Solar-Log GmbH versions 2.8.4-56 and 3.5.2-85, which can be exploited by attackers to conduct denial-of-service attacks...

7.5CVSS7.4AI score0.0114EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/06/09 12:0 a.m.5 views

Solar-Log GmbH 安全漏洞

Solar-Log GmbH is a data logger for monitoring photovoltaic power plants from the German company Solar-Log. A security vulnerability exists in Solar-Log GmbH versions 2.8.4-56 and 3.5.2-85 that stems from a faulty component network configuration. An attacker could exploit the vulnerability to...

9.8CVSS8.3AI score0.00807EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/06/09 12:0 a.m.3 views

Solar-Log GmbH 安全漏洞

Solar-Log GmbH is a data logger for monitoring photovoltaic power plants from the German company Solar-Log. A security vulnerability exists in Solar-Log GmbH versions 2.8.4-56 and 3.5.2-85, which can be exploited by attackers to obtain sensitive information...

7.5CVSS7.4AI score0.01335EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/06/09 12:0 a.m.5 views

Solar-Log GmbH 安全漏洞

Solar-Log GmbH is a data logger for monitoring PV plants from Solar-Log Germany. version 2.8.4-56 and 3.5.2-85 of Solar-Log GmbH contains a security vulnerability that can be exploited by attackers to cause privilege escalation...

9.8CVSS5.6AI score0.0102EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/06/09 12:0 a.m.4 views

Solar-Log GmbH 跨站请求伪造漏洞

Solar-Log GmbH is a data logger for monitoring photovoltaic PV power plants from the German company Solar-Log. A cross-site request forgery vulnerability exists in Solar-Log GmbH versions 2.8.4-56 and 3.5.2-85, which stems from the component's lack of data filtering and escaping...

8.8CVSS7.7AI score0.00377EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/06/09 12:0 a.m.4 views

Solar-Log GmbH 代码问题漏洞

Solar-Log GmbH is a data logger for monitoring photovoltaic PV power plants from the German company Solar-Log. A security vulnerability exists in Solar-Log GmbH versions 2.8.4-56 and 3.5.2-85, which stems from a faulty file upload in the component. An attacker could exploit the vulnerability to...

9.8CVSS8.4AI score0.00965EPSS
Exploits1References4
CNVD
CNVD
added 2021/12/08 12:0 a.m.23 views

Solar-Log 500 has an unspecified vulnerability

Solar-Log is a data logger used to monitor photovoltaic power plants from Solar-Log GmbH in Germany. Solar-Log 500 has a security vulnerability that could be exploited by an attacker with access to the device to read sensitive information...

6.5CVSS3.2AI score0.00997EPSS
Exploits1References1
CNVD
CNVD
added 2021/12/08 12:0 a.m.18 views

Solar-Log 500 has an unspecified vulnerability (CNVD-2021-100335)

Solar-Log is a data logger for monitoring PV plants from Solar-Log GmbH in Germany. Solar-Log 500 has a security vulnerability that could be exploited by an attacker to gain administrative privileges by connecting to the server...

7.5CVSS3.9AI score0.02878EPSS
Exploits1References1
NVD
NVD
added 2021/12/07 9:15 p.m.10 views

CVE-2021-34543

The web administration server in Solar-Log 500 before 2.8.2 Build 52 does not require authentication, which allows remote attackers to gain administrative privileges by connecting to the server. As a result, the attacker can modify configuration files and change the system status. Fixed with...

7.5CVSS0.02878EPSS
Exploits1References3
OSV
OSV
added 2021/12/07 9:15 p.m.2 views

CVE-2021-34543

The web administration server in Solar-Log 500 before 2.8.2 Build 52 does not require authentication, which allows remote attackers to gain administrative privileges by connecting to the server. As a result, the attacker can modify configuration files and change the system status. Fixed with...

7.5CVSS7.2AI score0.02878EPSS
Exploits1References3
NVD
NVD
added 2021/12/07 9:15 p.m.17 views

CVE-2021-34544

An issue was discovered in Solar-Log 500 before 2.8.2 Build 52 23.04.2013. In /export.html, email.html, and sms.html, cleartext passwords are stored. This may allow sensitive information to be read by someone with access to the device. Fixed with 3.0.0-60 11.10.2013 for SL 200, 500, 1000 / not...

6.5CVSS0.00997EPSS
Exploits1References3
OSV
OSV
added 2021/12/07 9:15 p.m.4 views

CVE-2021-34544

An issue was discovered in Solar-Log 500 before 2.8.2 Build 52 23.04.2013. In /export.html, email.html, and sms.html, cleartext passwords are stored. This may allow sensitive information to be read by someone with access to the device. Fixed with 3.0.0-60 11.10.2013 for SL 200, 500, 1000 / not...

6.5CVSS5.8AI score0.00997EPSS
Exploits1References3
Prion
Prion
added 2021/12/07 9:15 p.m.11 views

Authentication flaw

The web administration server in Solar-Log 500 before 2.8.2 Build 52 does not require authentication, which allows remote attackers to gain administrative privileges by connecting to the server. As a result, the attacker can modify configuration files and change the system status...

5CVSS7.7AI score0.02878EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2021/12/07 9:15 p.m.15 views

Default credentials

An issue was discovered in Solar-Log 500 before 2.8.2 Build 52 23.04.2013. In /export.html, email.html, and sms.html, cleartext passwords are stored. This may allow sensitive information to be read by someone with access to the device...

4CVSS6.2AI score0.00997EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2021/12/07 8:41 p.m.43 views

CVE-2021-34544

CVE-2021-34544 affects Solar-Log 500 (and related models) where cleartext passwords are stored in /export.html, /email.html, and /sms.html. The issue exists in Solar-Log 500 prior to 2.8.2 Build 52 (dated 23.04.2013) and is mitigated by upgrading to Solar-Log 3.0.0-60 or later (3.0.0-60 fixed 11....

6.5CVSS6.3AI score0.00997EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder