3 matches found
CVE-2019-19228
Fronius Solar Inverter devices before 3.14.1 HM 1.12.1 allow attackers to bypass authentication because the password for the today account is stored in the /tmp/webusers.conf file...
CVE-2019-19228
CVE-2019-19228 (and related CVE-2019-19229) affect Fronius Solar Inverter devices prior to version 3.14.1 (HM 1.12.1). The root cause is a credential handling flaw where the password for the today account is stored in /tmp/web_users.conf, enabling bypass of authentication. Related entry CVE-2019-...
Fronius Solar Inverter Series Insecure Communication / Path Traversal
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple vulnerabilites product: Fronius Solar Inverter Series vulnerable version: SW Version =3.14.1 vuln 2: 3.12.5 - HM 1.10.5, see solution section below CVE number:...