Lucene search
+L

226 matches found

Vulnrichment
Vulnrichment
added 2024/05/03 2:15 a.m.11 views

CVE-2023-51579 Voltronic Power ViewPower Incorrect Permission Assignment Local Privilege Escalation Vulnerability

Voltronic Power ViewPower Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Voltronic Power ViewPower. An attacker must first obtain the ability to execute low-privileged code on...

7.8CVSS7.3AI score0.00234EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/03 2:15 a.m.11 views

CVE-2023-51578 Voltronic Power ViewPower MonitorConsole Exposed Dangerous Method Denial-of-Service Vulnerability

Voltronic Power ViewPower MonitorConsole Exposed Dangerous Method Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Voltronic Power ViewPower. Authentication is not required to exploit this vulnerabilit...

7.5CVSS6.6AI score0.01283EPSS
Exploits0References1
CVE
CVE
added 2024/05/03 2:15 a.m.45 views

CVE-2023-51577

Voltronic Power ViewPower contains a local privilege escalation in the setShutdown method. The flaw arises from an exposed dangerous method that allows a low-privileged attacker who can run code locally to escalate to SYSTEM and execute arbitrary code. This is documented across multiple sources (...

7.8CVSS7.8AI score0.0031EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 2:15 a.m.11 views

CVE-2023-51577 Voltronic Power ViewPower setShutdown Exposed Dangerous Method Local Privilege Escalation Vulnerability

Voltronic Power ViewPower setShutdown Exposed Dangerous Method Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Voltronic Power ViewPower. An attacker must first obtain the ability to execute low-privileged cod...

7.8CVSS7.3AI score0.0031EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/03 2:15 a.m.21 views

CVE-2023-51578 Voltronic Power ViewPower MonitorConsole Exposed Dangerous Method Denial-of-Service Vulnerability

Voltronic Power ViewPower MonitorConsole Exposed Dangerous Method Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Voltronic Power ViewPower. Authentication is not required to exploit this vulnerabilit...

7.5CVSS7.7AI score0.01283EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/03 2:15 a.m.32 views

CVE-2023-51577 Voltronic Power ViewPower setShutdown Exposed Dangerous Method Local Privilege Escalation Vulnerability

Voltronic Power ViewPower setShutdown Exposed Dangerous Method Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Voltronic Power ViewPower. An attacker must first obtain the ability to execute low-privileged cod...

7.8CVSS8AI score0.0031EPSS
Exploits0References1
CVE
CVE
added 2024/05/03 2:15 a.m.44 views

CVE-2023-51578

CVE-2023-51578 affects Voltronic Power ViewPower MonitorConsole. The flaw is an exposed dangerous method in the MonitorConsole class enabling remote DoS without authentication. Public sources (ZDI-23-1884) confirm the issue, but no concrete remediation/version fix is provided in the connected doc...

7.5CVSS7.5AI score0.01283EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 2:15 a.m.12 views

CVE-2023-51576 Voltronic Power ViewPower Deserialization of Untrusted Data Remote Code Execution Vulnerability

Voltronic Power ViewPower Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Voltronic Power ViewPower. Authentication is not required to exploit this vulnerability. The specific...

9.8CVSS8AI score0.01549EPSS
Exploits0References1
CVE
CVE
added 2024/05/03 2:15 a.m.49 views

CVE-2023-51576

Summary: CVE-2023-51576 affects Voltronic Power ViewPower. The vulnerability exists in the RMI interface listening by default on TCP port 51099 and stems from improper validation of user-supplied data, allowing deserialization of untrusted data and resulting in remote code execution in the contex...

9.8CVSS9.8AI score0.01549EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 2:15 a.m.16 views

CVE-2023-51575 Voltronic Power ViewPower MonitorConsole Exposed Dangerous Method Remote Code Execution Vulnerability

Voltronic Power ViewPower MonitorConsole Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Voltronic Power ViewPower. Authentication is not required to exploit this vulnerability. The...

9.8CVSS8AI score0.01483EPSS
Exploits0References1
CVE
CVE
added 2024/05/03 2:15 a.m.62 views

CVE-2023-51575

CVE-2023-51575 concerns Voltronic Power ViewPower MonitorConsole, where an exposed dangerous method in the MonitorConsole class enables remote code execution with no authentication. Documents confirm RCE context and lack of required privileges, affecting Voltronic Power ViewPower installations, b...

9.8CVSS9.8AI score0.01483EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 2:15 a.m.21 views

CVE-2023-51574 Voltronic Power ViewPower updateManagerPassword Exposed Dangerous Method Authentication Bypass Vulnerability

Voltronic Power ViewPower updateManagerPassword Exposed Dangerous Method Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Voltronic Power ViewPower. Authentication is not required to exploit this vulnerability. T...

9.8CVSS6.9AI score0.01553EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/03 2:15 a.m.32 views

CVE-2023-51574 Voltronic Power ViewPower updateManagerPassword Exposed Dangerous Method Authentication Bypass Vulnerability

Voltronic Power ViewPower updateManagerPassword Exposed Dangerous Method Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Voltronic Power ViewPower. Authentication is not required to exploit this vulnerability. T...

9.8CVSS9.8AI score0.01553EPSS
Exploits0References1
CVE
CVE
added 2024/05/03 2:15 a.m.68 views

CVE-2023-51574

CVE-2023-51574 — Voltronic Power ViewPower authentication bypass . Affected software: Voltronic Power ViewPower (monitoring/management software for solar inverters). Vulnerability: The flaw exists in the updateManagerPassword method where a dangerous function is exposed, enabling remote attackers...

9.8CVSS9.5AI score0.01553EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.8 views

Voltronic Power ViewPower 安全漏洞

Voltronic Power ViewPower is Voltronic Power's monitoring and management software for solar inverters. A remote code execution vulnerability exists in Voltronic Power ViewPower, which can be exploited by an attacker to execute code in the context of the current user...

9.8CVSS8.2AI score0.01483EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.7 views

Voltronic Power ViewPower 安全漏洞

Voltronic Power ViewPower is Voltronic Power's monitoring and management software for solar inverters. A remote code execution vulnerability exists in Voltronic Power ViewPower Pro, which is caused by a lack of proper validation of user-supplied data. An attacker can exploit the vulnerability to...

9.8CVSS8.1AI score0.01483EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.6 views

Voltronic Power ViewPower 安全漏洞

Voltronic Power ViewPower is Voltronic Power's monitoring and management software for solar inverters. Voltronic Power ViewPower suffers from an information disclosure vulnerability that is caused by a lack of authentication before allowing access to functionality. An attacker could exploit the...

7.5CVSS6.2AI score0.36038EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.4 views

Voltronic Power ViewPower 安全漏洞

Voltronic Power ViewPower is Voltronic Power's monitoring and management software for solar inverters. Voltronic Power ViewPower suffers from a remote code execution vulnerability that stems from a specific flaw in the LinuxMonitorConsole class, which can be exploited by an attacker to execute co...

9.8CVSS8.1AI score0.01483EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.8 views

Voltronic Power ViewPower 安全漏洞

Voltronic Power ViewPower is Voltronic Power's monitoring and management software for solar inverters. Voltronic Power ViewPower Pro suffers from a SQL injection vulnerability that is caused by failing to properly validate a user-supplied string before constructing a SQL query using it. An attack...

9.8CVSS8.2AI score0.01331EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.7 views

Voltronic Power ViewPower 安全漏洞

Voltronic Power ViewPower is Voltronic Power's monitoring and management software for solar inverters. A remote code execution vulnerability exists in Voltronic Power ViewPower Pro, which can be exploited by an attacker to execute code in the context of LOCAL SERVICE...

9.8CVSS8.2AI score0.01603EPSS
Exploits0References2
Rows per page
Query Builder