4 matches found
CVE-2008-7291
gri before 2.12.18 generates temporary files in an insecure way...
CVE-2024-21877 Insecure File Generation Based on User Input in Enphase IQ Gateway version 4.x to 8.x and < 8.2.4225
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability through a url parameter in Enphase IQ Gateway formerly known as Envoy allows File Manipulation. The endpoint requires authentication.This issue affects Envoy: from 4.x to 8.0 and 8.2.4225...
CVE-2024-21877 Insecure File Generation Based on User Input in Enphase IQ Gateway version 4.x to 8.x and < 8.2.4225
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability through a url parameter in Enphase IQ Gateway formerly known as Envoy allows File Manipulation. The endpoint requires authentication.This issue affects Envoy: from 4.x to 8.0 and 8.2.4225...
CVE-2008-7291
CVE-2008-7291 affects the GRI software, specifically versions before 2.12.18. The root cause is insecure generation of temporary files. The provided documents do not specify the exact impact, exploitation details, or a remediation/workaround. Actions: monitor for updates in the connected sources ...