Moni::tool@* Security Vulnerabilities and Issues — Moni::tool@* CVE List

Lucene search

BadgermeterMoni::tool*

4 matches found

CVE•added 2024/03/12 4:15 p.m.•61 views

CVE-2024-1302

Information exposure vulnerability in Badger Meter Monitool affecting versions up to 4.6.3 and earlier. A local attacker could change the application's file parameter to a log file obtaining all sensitive information such as database credentials.

7.3CVSS6.8AI score0.00285EPSS

CVE•added 2024/03/12 4:15 p.m.•45 views

CVE-2024-1301

SQL injection vulnerability in Badger Meter Monitool affecting versions 4.6.3 and earlier. A remote attacker could send a specially crafted SQL query to the server via the j_username parameter and retrieve the information stored in the database.

9.8CVSS9.6AI score0.10564EPSS

CVE•added 2022/11/15 9:15 p.m.•41 views

CVE-2020-12508

In s::can moni::tools in versions below 4.2 an unauthenticated attacker could get any file from the device by path traversal in the image-relocator module.

7.5CVSS7.6AI score0.00328EPSS

CVE•added 2022/11/07 10:15 a.m.•40 views

CVE-2020-12509

In s::can moni::tools in versions below 4.2 an unauthenticated attacker could get any file from the device by path traversal in the camera-file module.

7.5CVSS7.6AI score0.00328EPSS