CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

CNNVD•added 2022/09/28 12:0 a.m.•1 views

Carlo Gavazzi UWP 信任管理问题漏洞

Carlo Gavazzi UWP is a monitoring and control Universal Web Platform from Carlo Gavazzi. for applications such as building automation, energy efficiency performance management and parking lot guidance. A trust management issue vulnerability exists in Carlo Gavazzi UWP 3.0, which can be exploited ...

9.8CVSS8.4AI score0.01546EPSS

Exploits0References2

CNNVD•added 2022/09/28 12:0 a.m.•2 views

Carlo Gavazzi UWP SQL注入漏洞

Carlo Gavazzi UWP is a monitoring and control Universal Web Platform from Carlo Gavazzi. It is used for applications such as building automation, energy efficiency performance management and parking lot guidance. A SQL injection vulnerability exists in Carlo Gavazzi UWP 3.0, which can be exploite...

7.5CVSS7.7AI score0.00563EPSS

Exploits0References2

CNNVD•added 2022/09/28 12:0 a.m.•3 views

Carlo Gavazzi UWP 输入验证错误漏洞

Carlo Gavazzi UWP is a monitoring and control Universal Web Platform from Carlo Gavazzi. for applications such as building automation, energy efficiency performance management, and parking lot guidance. An input validation error vulnerability exists in Carlo Gavazzi UWP 3.0, which stems from a la...

7.2CVSS7.6AI score0.00679EPSS

Exploits0References3

CNNVD•added 2022/09/28 12:0 a.m.•1 views

Carlo Gavazzi UWP SQL注入漏洞

Carlo Gavazzi UWP is a monitoring and control Universal Web Platform from Carlo Gavazzi. for applications such as building automation, energy efficiency performance management and parking lot guidance. Carlo Gavazzi UWP 3.0 suffers from a SQL injection vulnerability that can be exploited by a...

9.4CVSS8.6AI score0.01276EPSS

Exploits0References2

CNNVD•added 2022/09/28 12:0 a.m.•1 views

Carlo Gavazzi UWP SQL注入漏洞

Carlo Gavazzi UWP is a monitoring and control Universal Web Platform from Carlo Gavazzi. for applications such as building automation, energy efficiency performance management and parking lot guidance. A SQL injection vulnerability exists in Carlo Gavazzi UWP 3.0, which originates from a Sentilo...

2.7CVSS5.5AI score0.00202EPSS

Exploits0References2

CNNVD•added 2022/09/28 12:0 a.m.•1 views

Carlo Gavazzi UWP 操作系统命令注入漏洞

Carlo Gavazzi UWP is a monitoring and control Universal Web Platform from Carlo Gavazzi. for applications such as building automation, energy efficiency performance management and parking lot guidance. An operating system command injection vulnerability exists in Carlo Gavazzi UWP 3.0, which can ...

9.8CVSS8.9AI score0.00536EPSS

Exploits0References2

CNNVD•added 2022/09/28 12:0 a.m.•2 views

Carlo Gavazzi UWP 跨站脚本漏洞

Carlo Gavazzi UWP is a monitoring and control Universal Web Platform from Carlo Gavazzi. It is used for applications such as building automation, energy efficiency performance management and parking lot guidance. A cross-site scripting vulnerability exists in Carlo Gavazzi UWP 3.0, which can be...

6.1CVSS6.1AI score0.00208EPSS

Exploits0References2

CNNVD•added 2022/09/28 12:0 a.m.•3 views

Carlo Gavazzi UWP 路径遍历漏洞

Carlo Gavazzi UWP is a monitoring and control Universal Web Platform from Carlo Gavazzi. It is used for applications such as building automation, energy efficiency performance management and parking lot guidance. A path traversal vulnerability exists in Carlo Gavazzi UWP 3.0, which can be exploit...

9.8CVSS8.6AI score0.01172EPSS

Exploits0References2

OSV•added 2021/02/18 12:15 a.m.•3 views

CVE-2020-9306

Tesla SolarCity Solar Monitoring Gateway through 5.46.43 has a "Use of Hard-coded Credentials" issue because Digi ConnectPort X2e uses a .pyc file to store the cleartext password for the python user account...

8.8CVSS7.3AI score0.00222EPSS

Exploits1References4

Prion•added 2021/02/18 12:15 a.m.•12 views

Hardcoded credentials

5.8CVSS8.7AI score0.00222EPSS

Exploits1References4Affected Software1

Cvelist•added 2021/02/17 11:11 p.m.•18 views

CVE-2020-9306

8.8CVSS8.8AI score0.00222EPSS

Exploits1References4

CVE•added 2021/02/17 11:11 p.m.•80 views

CVE-2020-9306

CVE-2020-9306 affects Digi ConnectPort X2e devices (SolarCity/Tesla branding) with hardcoded credentials stored in a .pyc-compiled file used at boot. FireEye analysis shows password_manager.pyc in /WEB/python/ contains five plaintext credentials for the python system user, enabling web and SSH ac...

8.8CVSS8.7AI score0.00222EPSS

Exploits1References4Affected Software1

CNNVD•added 2021/02/17 12:0 a.m.•4 views

Tesla SolarCity Solar Monitoring Gateway Trust Management Issue Vulnerability

Tesla SolarCity Solar Monitoring Gateway is an application from Tesla SolarCity Solar Monitoring Gateway Tesla, USA. Solar equipment is provided. A security vulnerability exists in Tesla SolarCity Solar Monitoring Gateway through 5.46.43, which stems from the use of hardcoded credentials Digi...

8.8CVSS7.3AI score0.00222EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by