Lucene search
K

4 matches found

OSV
OSV
added 2024/11/24 11:15 p.m.11 views

CVE-2024-11666

Affected devices beacon to eCharge cloud infrastructure asking if there are any command they should run. This communication is established over an insecure channel since peer verification is disabled everywhere. Therefore, remote unauthenticated users suitably positioned on the network between an...

9.8CVSS6AI score0.00417EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/11/24 10:32 p.m.23 views

CVE-2024-11665 Unauthenticated Remote Command Injection

Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in hardy-barth cph2echargefirmware allows OS Command Injection.This issue affects cph2echargefirmware: through 2.0.4...

8.8CVSS0.01217EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/11/24 12:0 a.m.26 views

PT-2024-17176 · Unknown · Cph2 Echarge Firmware

Name of the Vulnerable Software and Affected Versions: cph2 echarge firmware versions through 2.0.4 Description: The issue affects devices that communicate with the eCharge cloud infrastructure over an insecure channel, as peer verification is disabled. This allows remote unauthenticated users,...

9.8CVSS8.6AI score0.00417EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2024/11/24 12:0 a.m.5 views

PT-2024-17175 · Unknown · Cph2 Echarge Firmware

Name of the Vulnerable Software and Affected Versions: cph2 echarge firmware versions through 2.0.4 Description: The issue affects the cph2 echarge firmware, allowing OS Command Injection due to an Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability...

8.8CVSS7.7AI score0.01217EPSS
Exploits1References7
Rows per page
Query Builder