146 matches found
Design/Logic Flaw
A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Flash Memory. The manipulation leads to privilege escalation. The attack can be launched remotely. Upgrading to version...
Cross site request forgery (csrf)
A vulnerability, which was classified as problematic, has been found in Solare Solar-Log 2.8.4-56/3.5.2-85. Affected by this issue is some unknown functionality. The manipulation leads to cross site request forgery. The attack may be launched remotely. Upgrading to version 3.5.3-86 is able to...
Privilege escalation
A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85 and classified as critical. This issue affects some unknown processing of the component Network Config. The manipulation leads to privilege escalation. The attack may be initiated remotely. Upgrading to version 3.5.3-86 is able to...
CVE-2017-20025 Solare Solar-Log Flash Memory privileges management
A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Flash Memory. The manipulation leads to privilege escalation. The attack can be launched remotely. Upgrading to version...
CVE-2017-20025
CVE-2017-20025 affects Solar-Log appliances: Solare Solar-Log versions 2.8.4-56 and 3.5.2-85. An issue with the Flash Memory component allows manipulation that leads to privilege escalation, with a remote attack feasible. The advertised fix is to upgrade to version 3.5.3-86. Public details in con...
CVE-2017-20025 Solare Solar-Log Flash Memory privileges management
A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Flash Memory. The manipulation leads to privilege escalation. The attack can be launched remotely. Upgrading to version...
CVE-2017-20024 Solare Solar-Log denial of service
A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85. It has been classified as problematic. Affected is an unknown function. The manipulation leads to denial of service. It is possible to launch the attack remotely. Upgrading to version 3.5.3-86 is able to address this issue. It is...
CVE-2017-20024
The CVE-2017-20024 vulnerability affects Solar-Log products Solare Solar-Log versions 2.8.4-56 and 3.5.2-85. The issue is described as an actionable denial-of-service condition triggered by an unknown function, with remote execution possible. A fix is available by upgrading to version 3.5.3-86. C...
CVE-2017-20024 Solare Solar-Log denial of service
A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85. It has been classified as problematic. Affected is an unknown function. The manipulation leads to denial of service. It is possible to launch the attack remotely. Upgrading to version 3.5.3-86 is able to address this issue. It is...
CVE-2017-20023 Solare Solar-Log Network Config privileges management
A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85 and classified as critical. This issue affects some unknown processing of the component Network Config. The manipulation leads to privilege escalation. The attack may be initiated remotely. Upgrading to version 3.5.3-86 is able to...
CVE-2017-20023 Solare Solar-Log Network Config privileges management
A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85 and classified as critical. This issue affects some unknown processing of the component Network Config. The manipulation leads to privilege escalation. The attack may be initiated remotely. Upgrading to version 3.5.3-86 is able to...
CVE-2017-20023
CVE-2017-20023 affects Solare Solar-Log versions 2.8.4-56 and 3.5.2-85. The issue arises from some unknown processing in the Network Config component, enabling privilege escalation. The vulnerability could be exploited remotely, with impact on confidentiality, integrity, and availability describe...
CVE-2017-20022 Solare Solar-Log information disclosure
A vulnerability has been found in Solare Solar-Log 2.8.4-56/3.5.2-85 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to information disclosure. The attack can be initiated remotely. Upgrading to version 3.5.3-86 is able to address this issue. It is...
CVE-2017-20022 Solare Solar-Log information disclosure
A vulnerability has been found in Solare Solar-Log 2.8.4-56/3.5.2-85 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to information disclosure. The attack can be initiated remotely. Upgrading to version 3.5.3-86 is able to address this issue. It is...
CVE-2017-20022
The CVE-2017-20022 entry concerns Solare Solar-Log devices (versions 2.8.4-56 and 3.5.2-85). The vulnerability leads to information disclosure through an unknown code path; exploitation can be performed remotely. The advisory recommends upgrading to 3.5.3-86 to address the issue. Connected source...
CVE-2017-20021 Solare Solar-Log File Upload privileges management
A vulnerability, which was classified as critical, was found in Solare Solar-Log 2.8.4-56/3.5.2-85. This affects an unknown part of the component File Upload. The manipulation leads to privilege escalation. It is possible to initiate the attack remotely. Upgrading to version 3.5.3-86 is able to...
CVE-2017-20021 Solare Solar-Log File Upload privileges management
A vulnerability, which was classified as critical, was found in Solare Solar-Log 2.8.4-56/3.5.2-85. This affects an unknown part of the component File Upload. The manipulation leads to privilege escalation. It is possible to initiate the attack remotely. Upgrading to version 3.5.3-86 is able to...
CVE-2017-20021
CVE-2017-20021 affects Solare Solar-Log versions 2.8.4-56 and 3.5.2-85, with a vulnerability in the File Upload component that enables privilege escalation. The issue is exploitable remotely/over the network, per connected records, and upgrading to version 3.5.3-86 mitigates the flaw (addressed b...
CVE-2017-20020 Solare Solar-Log cross-site request forgery
A vulnerability, which was classified as problematic, has been found in Solare Solar-Log 2.8.4-56/3.5.2-85. Affected by this issue is some unknown functionality. The manipulation leads to cross site request forgery. The attack may be launched remotely. Upgrading to version 3.5.3-86 is able to...
CVE-2017-20020
CVE-2017-20020 affects Solar-Log: versions 2.8.4-56 and 3.5.2-85 contain a cross-site request forgery (CSRF) vulnerability. The flaw arises from lack of proper data filtering/escaping in a (unspecified) functionality, enabling remote exploitation. Upgrading to version 3.5.3-86 mitigates the issue...