Lucene search
K

7 matches found

CNVD
CNVD
added 2015/06/17 12:0 a.m.3 views

Sinapsi eSolar Light Plaintext Password Disclosure Vulnerability

Sinapsi eSolar Light is a monitoring system for use within solar applications from the Italian company Sinapsi. A security vulnerability in Sinapsi eSolar Light allows a remote attacker to read the HTML source code in the mail-configuration page to obtain a clear-text password and use it for...

2.1CVSS7AI score0.00345EPSS
Exploits0References1
NVD
NVD
added 2015/06/13 6:59 p.m.18 views

CVE-2015-3949

Sinapsi eSolar Light with firmware before 2.0.3970schsl2.2.85 allows attackers to discover cleartext passwords by reading the HTML source code of the mail-configuration page...

2.1CVSS6.7AI score0.00345EPSS
Exploits0References2
Prion
Prion
added 2015/06/13 6:59 p.m.17 views

Code injection

Sinapsi eSolar Light with firmware before 2.0.3970schsl2.2.85 allows attackers to discover cleartext passwords by reading the HTML source code of the mail-configuration page...

2.1CVSS7.2AI score0.00345EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/06/13 6:0 p.m.32 views

CVE-2015-3949

Sinapsi eSolar Light with firmware before 2.0.3970schsl2.2.85 allows attackers to discover cleartext passwords by reading the HTML source code of the mail-configuration page...

6.7AI score0.00345EPSS
Exploits0References2
CVE
CVE
added 2015/06/13 6:0 p.m.45 views

CVE-2015-3949

The CVE-2015-3949 issue affects Sinapsi eSolar Light firmware prior to 2.0.3970_schsl_2.2.85. Vulnerability: a plaintext password disclosure via viewing the HTML source on the mail-configuration page. Impact: attacker with local access can read cleartext passwords stored for mail configuration, c...

2.1CVSS6.9AI score0.00345EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2012/11/23 12:9 p.m.20 views

CVE-2012-5864

These Sinapsi devices do not check if users that visit pages within the device have properly authenticated. By directly visiting the pages within the device, attackers can gain unauthorized access with administrative privileges...

10CVSS6.7AI score0.04905EPSS
Exploits1References7
Cvelist
Cvelist
added 2012/11/23 11:0 a.m.20 views

CVE-2012-5864 Sinapsi eSolar Improper Authentication

These Sinapsi devices do not check if users that visit pages within the device have properly authenticated. By directly visiting the pages within the device, attackers can gain unauthorized access with administrative privileges...

9.4CVSS6.7AI score0.04905EPSS
Exploits1References5
Rows per page
Query Builder