16 matches found
CVE-2021-33210
An issue was discovered in Fimer Aurora Vision before 2.97.10. An attacker can in the WebUI obtain plant information without authentication by reading the response of APIs from a kiosk view of a plant...
CVE-2021-33209
An issue was discovered in Fimer Aurora Vision before 2.97.10. The response to a failed login attempt discloses whether the username or password is wrong, helping an attacker to enumerate usernames. This can make a brute-force attack easier...
EUVD-2021-19922
Malware in sbrugna...
EUVD-2021-19921
Malware in sbrugna...
CVE-2021-33209
An issue was discovered in Fimer Aurora Vision before 2.97.10. The response to a failed login attempt discloses whether the username or password is wrong, helping an attacker to enumerate usernames. This can make a brute-force attack easier...
CVE-2021-33209
An issue was discovered in Fimer Aurora Vision before 2.97.10. The response to a failed login attempt discloses whether the username or password is wrong, helping an attacker to enumerate usernames. This can make a brute-force attack easier...
Default credentials
An issue was discovered in Fimer Aurora Vision before 2.97.10. The response to a failed login attempt discloses whether the username or password is wrong, helping an attacker to enumerate usernames. This can make a brute-force attack easier...
CVE-2021-33210
An issue was discovered in Fimer Aurora Vision before 2.97.10. An attacker can in the WebUI obtain plant information without authentication by reading the response of APIs from a kiosk view of a plant...
CVE-2021-33210
An issue was discovered in Fimer Aurora Vision before 2.97.10. An attacker can in the WebUI obtain plant information without authentication by reading the response of APIs from a kiosk view of a plant...
Authentication flaw
An issue was discovered in Fimer Aurora Vision before 2.97.10. An attacker can in the WebUI obtain plant information without authentication by reading the response of APIs from a kiosk view of a plant...
CVE-2021-33209
The CVE-2021-33209 issue affects Fimer Aurora Vision prior to version 2.97.10. The vulnerability is in the authentication response: on a failed login attempt, the system reveals whether the username or the password was incorrect, enabling an attacker to enumerate valid usernames and potentially f...
CVE-2021-33209
An issue was discovered in Fimer Aurora Vision before 2.97.10. The response to a failed login attempt discloses whether the username or password is wrong, helping an attacker to enumerate usernames. This can make a brute-force attack easier...
CVE-2021-33210
An issue was discovered in Fimer Aurora Vision before 2.97.10. An attacker can in the WebUI obtain plant information without authentication by reading the response of APIs from a kiosk view of a plant...
CVE-2021-33210
CVE-2021-33210 affects Fimer Aurora Vision prior to 2.97.10. The flaw allows an unauthenticated user in the WebUI to read API responses from a plant kiosk view, effectively exposing plant information without authorization. The issue is described across multiple sources (including NVD/Red Hat refe...
Fimer Aurora 授权问题漏洞
Fimer Aurora is a scalable web-based power plant management platform from Fimer Italy. It is used to enable customers to remotely manage solar power plants in a variety of markets. Fimer Aurora suffers from an authorization issue vulnerability that arises from obtaining plant information without...
Fimer Aurora 安全漏洞
Fimer Aurora Vision is a scalable web-based power plant management platform from Fimer Italy. It is designed to enable customers to remotely manage solar plants in a variety of markets. A security vulnerability exists in Fimer Aurora that stems from a response to a failed login attempt revealing...