Sv-cpt-mc310 Firmware@* Security Vulnerabilities and Issues — Sv-cpt-mc310 Firmware@* CVE List

Lucene search

ContecSv-cpt-mc310 Firmware*

7 matches found

CVE•added 2021/02/24 12:15 p.m.•46 views

CVE-2021-20658

SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an attacker to execute arbitrary OS commands with the web server privilege via unspecified vectors.

10CVSS9.6AI score0.0214EPSS

CVE•added 2021/02/24 12:15 p.m.•45 views

CVE-2021-20656

Exposure of information through directory listing in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an authenticated attacker to obtain the information inside the system, such as directories and/or file configurations via unspecified vectors.

4.3CVSS4.5AI score0.00326EPSS

CVE•added 2021/02/24 12:15 p.m.•43 views

CVE-2021-20659

SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an authenticated attacker to upload arbitrary files via unspecified vectors. If the file is PHP script, an attacker may execute arbitrary code.

8.8CVSS8.7AI score0.01566EPSS

CVE•added 2021/02/24 12:15 p.m.•42 views

CVE-2021-20662

Missing authentication for critical function in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an attacker to alter the setting information without the access privileges via unspecified vectors.

7.5CVSS7.9AI score0.00399EPSS

CVE•added 2021/02/24 12:15 p.m.•35 views

CVE-2021-20660

Cross-site scripting vulnerability in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an attacker to inject an arbitrary script via unspecified vectors.

6.1CVSS6.2AI score0.00716EPSS

CVE•added 2021/02/24 12:15 p.m.•34 views

CVE-2021-20657

Improper access control vulnerability in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an authenticated attacker to obtain and/or alter the setting information without the access privilege via unspecified vectors.

5.5CVSS5.4AI score0.00317EPSS

CVE•added 2021/02/24 12:15 p.m.•34 views

CVE-2021-20661

Directory traversal vulnerability in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows authenticated attackers to delete arbitrary files and/or directories on the server via unspecified vectors.

8.1CVSS7.8AI score0.01218EPSS