Lucene search
K

6 matches found

Positive Technologies
Positive Technologies
added 2025/12/04 12:0 a.m.5 views

PT-2025-49142

Name of the Vulnerable Software and Affected Versions SolisCloud API affected versions not specified Description The SolisCloud API has a Broken Access Control issue, specifically an Insecure Direct Object Reference IDOR. An authenticated user can access detailed data for any plant by modifying t...

8.3CVSS6.3AI score0.00227EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-11010

Malicious code in bioql PyPI...

6.9CVSS6.5AI score0.00264EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/17 9:37 p.m.7 views

CVE-2025-31949

An authenticated attacker can obtain any plant name by knowing the plant ID...

6.9CVSS6.8AI score0.00264EPSS
Exploits0References3
NVD
NVD
added 2025/04/15 9:16 p.m.24 views

CVE-2025-31949

An authenticated attacker can obtain any plant name by knowing the plant ID...

6.9CVSS0.00264EPSS
Exploits0References1
CVE
CVE
added 2025/04/15 8:19 p.m.52 views

CVE-2025-31949

Growatt Cloud Applications (Growatt Cloud portal) is affected by CVE-2025-31949. An authenticated attacker can obtain arbitrary plant names by supplying a plant ID, indicating an access/validation weakness in the plant-name retrieval mechanism. Public details confirm vulnerable versions include 3...

6.9CVSS5.2AI score0.00264EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/15 12:0 a.m.4 views

PT-2025-16393

Name of the Vulnerable Software and Affected Versions The product name cannot be determined. Description An authenticated attacker can obtain any plant name by knowing the plant ID. Recommendations At the moment, there is no information about a newer version that contains a fix for this...

6.9CVSS6.3AI score0.00264EPSS
Exploits0References6
Rows per page
Query Builder