Lucene search
+L

4 matches found

CNNVD
CNNVD
added 2026/03/16 12:0 a.m.8 views

Socomec socomec DIRIS A-40 访问控制错误漏洞

Socomec DIRIS A-40 is an electrical device designed by the French company Socomec for power metering and monitoring. The Socomec DIRIS A-40 has a vulnerability related to access control, which stems from insufficient authentication in the Web API implementation. This vulnerability could allow...

6.3CVSS6.6AI score0.00388EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/13 8:43 p.m.5 views

CVE-2026-2491 Socomec DIRIS A-40 HTTP API Authentication Bypass Vulnerability

Socomec DIRIS A-40 HTTP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of Socomec DIRIS A-40 power monitoring devices. Authentication is not required to exploit this vulnerability. The specific flaw...

6.3CVSS5.9AI score0.00388EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 4:37 a.m.14 views

CVE-2019-15859

Password disclosure in the web interface on socomec DIRIS A-40 devices before 48250501 allows a remote attacker to get full access to a device via the /password.jsn URI...

10CVSS6.9AI score0.34113EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2019/10/08 12:0 a.m.176 views

Socomec DIRIS A-40 Password Disclosure

description Password disclosure in the web interface on socomec DIRIS A-40 devices before 48250501 allows a remote attacker to get full access to a device via the /password.jsn URI. ------------------------------------------ Vulnerability Type Incorrect Access Control...

0.34113EPSS
Exploits1
Rows per page
Query Builder