247 matches found
CVE-2023-27920
Improper access control vulnerability in the system date/time setting page of SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 and SV-CPT-MC310F versions prior to Ver.8.10 allows a remote authenticated attacker to alter system date/time of the affected product...
CVE-2023-27920
CVE-2023-27920 concerns an improper access control flaw in the system date/time setting page of Contec SolarView Compact SV-CPT-MC310 (pre-8.10) and SV-CPT-MC310F (pre-8.10). The underlying issue allows a remote authenticated attacker to alter the device’s system date/time. Public documentation a...
CVE-2023-27920
Improper access control vulnerability in the system date/time setting page of SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 and SV-CPT-MC310F versions prior to Ver.8.10 allows a remote authenticated attacker to alter system date/time of the affected product...
Contec SolarView Compact 信任管理问题漏洞
Contec SolarView Compact is an application system from Contec Japan. It provides measurement system for photovoltaic power generation. A security vulnerability exists in the Contec SolarView Compact SV-CPT-MC310 Ver.8.10 prior and SV-CPT-MC310F Ver.8.10 prior, which stems from the presence of...
CVE-2023-27514
OS command injection vulnerability in the download page of SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 and SV-CPT-MC310F versions prior to Ver.8.10 allows a remote authenticated attacker to execute an arbitrary OS command...
CVE-2023-29919
SolarView Compact = 6.0 is vulnerable to Insecure Permissions. Any file on the server can be read or modified because texteditor.php is not restricted...
PT-2023-21420 · Unknown · Solarview Compact Sv-Cpt-Mc310
Name of the Vulnerable Software and Affected Versions: SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 SolarView Compact SV-CPT-MC310F versions prior to Ver.8.10 Description: The issue is related to improper access control in the system date/time setting page, allowing a remote...
CVE-2023-27521
OS command injection vulnerability in the mail setting page of SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 and SV-CPT-MC310F versions prior to Ver.8.10 allows remote authenticated attackers to execute an arbitrary OS command...
PT-2023-21185 · Unknown · Solarview Compact Sv-Cpt-Mc310
Name of the Vulnerable Software and Affected Versions: SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 SolarView Compact SV-CPT-MC310F versions prior to Ver.8.10 Description: The issue allows a remote authenticated attacker to execute an arbitrary OS command due to an OS command injecti...
CVE-2023-27521
CVE-2023-27521 is a confirmed OS command injection vulnerability in the mail setting page of Contec SolarView Compact SV-CPT-MC310 (pre-8.10) and SV-CPT-MC310F (pre-8.10). The underlying issue allows remote authenticated attackers to execute arbitrary commands on affected devices. Impact details ...
CVE-2023-27512
Use of hard-coded credentials exists in SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10, and SV-CPT-MC310F versions prior to Ver.8.10, which may allow a remote authenticated attacker to login the affected product with an administrative privilege and perform an unintended operation...
CVE-2023-27514
Summary: CVE-2023-27514 affects Contec SolarView Compact SV-CPT-MC310 and SV-CPT-MC310F. The flaw is an OS command injection in the download page , allowing a remote authenticated attacker to execute arbitrary commands on vulnerable devices. The affected firmware versions are SV-CPT-MC310 and SV-...
CVE-2023-27512
Use of hard-coded credentials exists in SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10, and SV-CPT-MC310F versions prior to Ver.8.10, which may allow a remote authenticated attacker to login the affected product with an administrative privilege and perform an unintended operation...
Contec SolarView Compact 操作系统命令注入漏洞
Contec SolarView Compact is an application system from Contec Japan. It provides measurement system for photovoltaic power generation. A security vulnerability exists in Contec SolarView Compact SV-CPT-MC310 Ver.8.10 prior and SV-CPT-MC310F Ver.8.10 prior, which stems from the presence of an...
Contec SolarView Compact 安全漏洞
Contec SolarView Compact is an application system from Contec Japan. It provides measurement system for photovoltaic power generation. A security vulnerability exists in Contec SolarView Compact SV-CPT-MC310 Ver.8.10 prior and SV-CPT-MC310F Ver.8.10 prior, which stems from the presence of a buffe...
Contec SolarView Compact 安全漏洞
Contec SolarView Compact is an application system from Contec Japan. It provides a photovoltaic power measurement system. A security vulnerability exists in Contec SolarView Compact 6.0 and earlier versions, which stems from texteditor.php being unrestricted and any file on the server can be read...
CVE-2023-27518
CVE-2023-27518 — Summary for SolarView Compact Affected product: SolarView Compact SV-CPT-MC310 and SV-CPT-MC310F.Vulnerable components: multiple setting pages (buffer overflow) within the firmware.Root cause: buffer overflow in the affected pages.Impact: remote authenticated attacker could execu...
CVE-2023-27518
Buffer overflow vulnerability in the multiple setting pages of SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 and SV-CPT-MC310F versions prior to Ver.8.10 allows a remote authenticated attacker to execute arbitrary code...
PT-2023-22476 · Unknown · Solarview Compact
Name of the Vulnerable Software and Affected Versions: SolarView Compact versions 6.0 and earlier Description: The issue allows any file on the server to be read or modified due to insecure permissions. This is because the texteditor.php file is not restricted, leading to potential unauthorized...
The vulnerability of the microprogramming software of the SolarView Compact device, which is used for measuring solar energy, data display, and storage, stems from the lack of measures to clean incoming data. This allows a malicious individual to execute arbitrary commands.
The vulnerability of the microprogramming software of the SolarView Compact device, which is used for measuring solar energy, data display, and storage, stems from the lack of measures to clean incoming data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary command...