15 matches found
CVE-2023-24500
Electra Central AC unit – Adjacent attacker may cause the unit to load unauthorized FW...
CVE-2023-24503
Electra Central AC unit – Adjacent attacker may cause the unit to load unauthorized FW...
Path traversal
Electra Central AC unit – The unit opens an AP with an easily calculated password...
Code injection
Electra Central AC unit – Adjacent attacker may cause the unit to connect to unauthorized update server...
Hardcoded credentials
Electra Central AC unit – Hardcoded Credentials in unspecified code used by the unit...
CVE-2023-24501
CVE-2023-24501 affects the Electra Central AC unit, where hardcoded credentials are present in unspecified code used by the unit. The security impact is high across confidentiality, integrity, and availability, with a network attack surface and no user interaction required. The available document...
PT-2023-19648 · Electra · Electra Central Ac Unit
Name of the Vulnerable Software and Affected Versions: Electra Central AC unit affected versions not specified Description: The issue concerns hardcoded credentials in unspecified code used by the Electra Central AC unit. There is no information provided about the estimated number of potentially...
CVE-2023-24500 Electra Central AC unit – Adjacent attacker may cause the unit to load unauthorized FW
Electra Central AC unit – Adjacent attacker may cause the unit to load unauthorized FW...
CVE-2023-24502
The CVE-2023-24502 entry concerns Electra Central AC unit where the device opens an access point secured by an easily calculated password. The connected sources confirm this weakness, but do not provide concrete exploit vectors, affected firmware versions, or remediation details. Some entries not...
PT-2023-19651 · Electra · Electra Central Ac Unit
Name of the Vulnerable Software and Affected Versions: Electra Central AC unit affected versions not specified Description: The issue allows an adjacent attacker to cause the unit to connect to an unauthorized update server. Recommendations: At the moment, there is no information about a newer...
PT-2023-19649 · Electra · Electra Central Ac Unit
Name of the Vulnerable Software and Affected Versions: Electra Central AC unit affected versions not specified Description: The issue concerns an Electra Central AC unit that opens an Access Point AP with a password that can be easily calculated. Recommendations: At the moment, there is no...
PT-2023-19647 · Electra · Electra Central Ac Unit
Name of the Vulnerable Software and Affected Versions: Electra Central AC unit affected versions not specified Description: The issue allows an adjacent attacker to cause the unit to load unauthorized firmware. Recommendations: At the moment, there is no information about a newer version that...
CVE-2023-24503
The CVE-2023-24503 entry concerns the Electra Central AC unit (Electra Smart Kit for Split AC). The connected records describe an adjacent- attacker capability to cause the unit to load unauthorized firmware, indicating the vulnerable component/process is tied to firmware loading mechanisms. Spec...
PT-2023-19650 · Electra · Electra Central Ac Unit
Name of the Vulnerable Software and Affected Versions: Electra Central AC unit affected versions not specified Description: The issue allows an adjacent attacker to cause the unit to load unauthorized firmware. Recommendations: At the moment, there is no information about a newer version that...
CVE-2023-24500 Electra Central AC unit – Adjacent attacker may cause the unit to load unauthorized FW
Electra Central AC unit – Adjacent attacker may cause the unit to load unauthorized FW...