24 matches found
EUVD-2025-10999
Malicious code in bioql PyPI...
CVE-2025-30254
An unauthenticated attacker can obtain a serial number of a smart meters using its owner's username...
CVE-2025-30257
Unauthenticated attackers can retrieve serial number of smart meters associated to a specific user account...
CVE-2025-30257
CVE-2025-30257 relates to Growatt Cloud portal authorization bypass through a user-controlled key. The included connected records confirm that unauthenticated attackers can retrieve the serial number of smart meters associated with a specific user account, indicating an information disclosure vul...
CVE-2025-30254
An unauthenticated attacker can obtain a serial number of a smart meters using its owner's username...
CVE-2025-30254
An unauthenticated attacker can obtain a serial number of a smart meters using its owner's username...
CVE-2025-30254 Growatt Cloud portal Authorization Bypass Through User-Controlled Key
An unauthenticated attacker can obtain a serial number of a smart meters using its owner's username...
CVE-2025-30254
CVE-2025-30254 affects Growatt Cloud Applications (noted in multiple feeds). The CSC-grade description shows an unauthenticated attacker can obtain a meter serial number by querying with a user’s username. CNNVD-202504-2298 specifies vulnerable versions up to 3.6.0 and earlier; other sources reit...
Growatt Cloud Applications 安全漏洞
Growatt Cloud Applications is a monitoring platform from China-based Growatt. A security vulnerability exists in Growatt Cloud Applications version 3.6.0 and prior versions, which can be exploited by an unauthenticated attacker to obtain the serial number of a smart meter associated with a specif...
PT-2025-16491
Name of the Vulnerable Software and Affected Versions The product name cannot be determined. Description An unauthenticated attacker can obtain a serial number of a smart meters using its owner's username. Recommendations At the moment, there is no information about a newer version that contains ...
Growatt Cloud Applications 安全漏洞
Growatt Cloud Applications is a monitoring platform from Growatt, a Chinese company. A security vulnerability exists in Growatt Cloud Applications version 3.6.0 and earlier, which originates from an unauthenticated attacker being able to obtain the serial number of a smart meter...
SQL Injection Vulnerability in Smart Meter Integrated Management System of Xintian Technology Corporation (CNVD-2021-102455)
Xintian Technology Co., Ltd. is a professional manufacturer and supplier of water meters, energy meters and gas meters. A SQL injection vulnerability exists in the Smart Meter Integrated Management System of Xintian Technology Corporation, which can be exploited by attackers to obtain sensitive...
File Upload Vulnerability in the Integrated Smart Meter Management System of Xintian Technology Co.
Ltd. is a professional manufacturer and supplier of water meters, energy meters, and gas meters. Ltd. has a file upload vulnerability in its integrated smart meter management system, which can be exploited by attackers to obtain server control privileges...
SQL Injection Vulnerability in Smart Meter Integrated Management System of Xintian Technology Corporation (CNVD-2021-70043)
Xintian Technology Co., Ltd. is a professional manufacturer and supplier of water meters, energy meters and gas meters. A SQL injection vulnerability exists in the Smart Meter Integrated Management System of Xintian Technology Corporation, which can be exploited by attackers to obtain sensitive...
SQL Injection Vulnerability in Smart Meter Integrated Management System of Xintian Technology Corporation (CNVD-2021-70001)
Xintian Technology Co., Ltd. is a professional manufacturer and supplier of water meters, energy meters and gas meters. A SQL injection vulnerability exists in the Smart Meter Integrated Management System of Xintian Technology Corporation, which can be exploited by attackers to obtain sensitive...
SQL Injection Vulnerability in Smart Meter Integrated Management System of Xintian Technology Corporation (CNVD-2021-70022)
Xintian Technology Co., Ltd. is a professional manufacturer and supplier of water meters, energy meters and gas meters. A SQL injection vulnerability exists in the Smart Meter Integrated Management System of Xintian Technology Corporation, which can be exploited by attackers to obtain sensitive...
SQL Injection Vulnerability in Smart Meter Integrated Management System of Xintian Technology Corporation (CNVD-2021-70007)
Xintian Technology Co., Ltd. is a professional manufacturer and supplier of water meters, energy meters and gas meters. A SQL injection vulnerability exists in the Smart Meter Integrated Management System of Xintian Technology Corporation, which can be exploited by attackers to obtain sensitive...
SQL Injection Vulnerability in Smart Meter Integrated Management System of Xintian Technology Corporation (CNVD-2021-64016)
Xintian Technology Co., Ltd. is a professional manufacturer and supplier of water meters, energy meters and gas meters. A SQL injection vulnerability exists in the Smart Meter Integrated Management System of Xintian Technology Corporation, which can be exploited by attackers to obtain sensitive...
SQL Injection Vulnerability in Smart Meter Integrated Management System of Xintian Technology Co.
Xintian Technology Co., Ltd. is a professional manufacturer and supplier of water meters, energy meters and gas meters. A SQL injection vulnerability exists in the Smart Meter Integrated Management System of Xintian Technology Corporation, which can be exploited by attackers to obtain sensitive...
File Upload Vulnerability in Smart Meter Integrated Management System of Xintian Technology Co.
Xintian Technology Co., Ltd. is a professional manufacturer and supplier of water meters, energy meters and gas meters. A file upload vulnerability exists in the Smart Meter Integrated Management System of Xintian Technology Corporation, which can be exploited by attackers to gain control of the...