CVE-2023-29118 Unauthorized SQLite Injection in Enel X Juicebox

Waybox Enel X web management application could execute arbitrary requests on the internal database via /admin/versions.php...

CVE-2023-29118 Unauthorized SQLite Injection in Enel X Juicebox

Waybox Enel X web management application could execute arbitrary requests on the internal database via /admin/versions.php...

CVE-2023-29115

In certain conditions a request directed to the Waybox Enel X Web management application could cause a denial-of-service e.g. reboot...

CVE-2023-29115

In certain conditions a request directed to the Waybox Enel X Web management application could cause a denial-of-service e.g. reboot...

CVE-2023-29117 Authentication Bypass in JuiceBox Web Manager interface

Waybox Enel X web management API authentication could be bypassed and provide administrator’s privileges over the Waybox system...

CVE-2023-29117

CVE-2023-29117 affects Waybox Enel X, where the web management API authentication can be bypassed, granting administrator privileges on the Waybox system. The available connected documents confirm the vulnerability’s existence and describe the impact as administrator-level access via bypassing th...

CVE-2023-29117 Authentication Bypass in JuiceBox Web Manager interface

Waybox Enel X web management API authentication could be bypassed and provide administrator’s privileges over the Waybox system...

CVE-2023-29116

The CVE-2023-29116 entry describes an information-disclosure condition in Enel X Waybox. Affected component: Waybox Enel X web management application. Under certain requests, attackers could obtain details such as Waybox OS version and service configuration information. Impact is information expo...

CVE-2023-29116 PHP Information Disclosure in Enel X JuiceBox

Under certain conditions, through a request directed to the Waybox Enel X web management application, information like Waybox OS version or service configuration details could be obtained...

CVE-2023-29116 PHP Information Disclosure in Enel X JuiceBox

Under certain conditions, through a request directed to the Waybox Enel X web management application, information like Waybox OS version or service configuration details could be obtained...

CVE-2023-29115 Denial of Service via Web Management interface in Enel X JuiceBox

In certain conditions a request directed to the Waybox Enel X Web management application could cause a denial-of-service e.g. reboot...

CVE-2023-29115

The CVE-2023-29115 entry concerns the Waybox Enel X Web Management application. Multiple connected sources confirm a denial-of-service condition: under certain requests, the web management interface could trigger a DoS event, including a reboot, affecting the Waybox Enel X Web management componen...

Enel X Waybox 安全漏洞

The Enel X Waybox is a home charging station from Enel X, Inc. The Enel X Waybox has a security vulnerability that originates from an attacker being able to trigger a heap buffer overflow by sending a specific packet to TCP port 7700...

Enel X Waybox 安全漏洞

The Enel X Waybox is a home charging station from Enel X, Inc. A security vulnerability exists in version 3.0 of the Enel X Waybox that stems from incorrect file ownership of the Privileged Services Library, which results in an attacker would be able to execute arbitrary operating system commands...

Enel X Waybox 安全漏洞

The Enel X Waybox is a home charging station from Enel X, Inc. A security vulnerability exists in version 3.0 of the Enel X Waybox, which originates from a web management application that can execute arbitrary requests on an internal database via /admin/dbstore.php...

Enel X Waybox 安全漏洞

The Enel X Waybox is a home charging station from Enel X, Inc. A security vulnerability exists in Enel X Waybox version 3.0 that stems from the presence of a type obfuscation vulnerability that allows brute force processing and bypassing authentication under certain conditions...

Enel X Waybox 安全漏洞

The Enel X Waybox is a home charging station from Enel X, Inc. A security vulnerability exists in version 3.0 of the Enel X Waybox that stems from a web management application that can execute arbitrary requests on an internal database via /admin/versions.php...

Enel X Waybox 安全漏洞

The Enel X Waybox is a home charging station from Enel X, Inc. A security vulnerability exists in the Enel X Waybox Pro version 3.0, which stems from the ability to bypass Web Management API authentication and provide administrator rights to the Waybox system...

Enel X Waybox 安全漏洞

The Enel X Waybox is a home charging station from Enel X, Inc. A security vulnerability exists in version 3.0 of the Enel X Waybox, which stems from a request directed to the web management application to obtain information such as the Waybox OS version or service configuration details...

Enel X Waybox 安全漏洞

Enel X Waybox is a home charging station from Enel X, Inc. A security vulnerability exists in version 3.0 of the Enel X Waybox that stems from a request directed to the web management application that could result in a denial of service...