Solar-log 1000 Firmware Security Vulnerabilities and Issues — Solar-log 1000 Firmware CVE List

Lucene search

Solar-logSolar-log 1000 Firmware

10 matches found

CVE•added 2022/06/09 11:15 p.m.•47 views

CVE-2017-20025

A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Flash Memory. The manipulation leads to privilege escalation. The attack can be launched remotely. Upgrading to version 3.5....

9.8CVSS8.6AI score0.00341EPSS

CVE•added 2023/01/26 9:18 p.m.•45 views

CVE-2022-47767

A backdoor in Solar-Log Gateway products allows remote access via web panel gaining super administration privileges to the attacker. This affects Solar-Log devices that use firmware version v4.2.7 up to v5.1.1 (included). This does not exist in SL 200, 500, 1000 / fixed in 4.2.8 for SL 250, 300, 12...

9.8CVSS9.6AI score0.00392EPSS

CVE•added 2022/06/09 11:15 p.m.•42 views

CVE-2017-20019

A vulnerability classified as problematic was found in Solare Solar-Log 2.8.4-56/3.5.2-85. Affected by this vulnerability is an unknown functionality of the component Config Handler. The manipulation leads to information disclosure. The attack can be launched remotely. Upgrading to version 3.5.3-86...

7.5CVSS5.7AI score0.00321EPSS

CVE•added 2022/06/09 11:15 p.m.•42 views

CVE-2017-20020

A vulnerability, which was classified as problematic, has been found in Solare Solar-Log 2.8.4-56/3.5.2-85. Affected by this issue is some unknown functionality. The manipulation leads to cross site request forgery. The attack may be launched remotely. Upgrading to version 3.5.3-86 is able to addre...

8.8CVSS6.7AI score0.00165EPSS

CVE•added 2022/06/09 11:15 p.m.•41 views

CVE-2017-20024

A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85. It has been classified as problematic. Affected is an unknown function. The manipulation leads to denial of service. It is possible to launch the attack remotely. Upgrading to version 3.5.3-86 is able to address this issue. It is reco...

7.5CVSS6.3AI score0.00317EPSS

CVE•added 2024/07/26 8:15 p.m.•41 views

CVE-2024-40117

Incorrect access control in Solar-Log 1000 before v2.8.2 and build 52- 23.04.2013 allows attackers to obtain Administrative privileges via connecting to the web administration server. Not existing for SL 200, 500, 1000 / fixed in 4.2.8 for SL 250, 300, 1200, 2000, SL 50 Gateway / fixed in 5.1.2 / 6...

9.8CVSS9.4AI score0.00095EPSS

CVE•added 2022/06/09 11:15 p.m.•38 views

CVE-2017-20022

A vulnerability has been found in Solare Solar-Log 2.8.4-56/3.5.2-85 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to information disclosure. The attack can be initiated remotely. Upgrading to version 3.5.3-86 is able to address this issue. It is rec...

7.5CVSS7.3AI score0.003EPSS

CVE•added 2022/06/09 11:15 p.m.•37 views

CVE-2017-20021

A vulnerability, which was classified as critical, was found in Solare Solar-Log 2.8.4-56/3.5.2-85. This affects an unknown part of the component File Upload. The manipulation leads to privilege escalation. It is possible to initiate the attack remotely. Upgrading to version 3.5.3-86 is able to add...

9.8CVSS8.1AI score0.00358EPSS

CVE•added 2022/06/09 11:15 p.m.•37 views

CVE-2017-20023

A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85 and classified as critical. This issue affects some unknown processing of the component Network Config. The manipulation leads to privilege escalation. The attack may be initiated remotely. Upgrading to version 3.5.3-86 is able to addr...

9.8CVSS8AI score0.00295EPSS

CVE•added 2024/07/26 8:15 p.m.•30 views

CVE-2024-40116

An issue in Solar-Log 1000 before v2.8.2 and build 52-23.04.2013 was discovered to store plaintext passwords in the export.html, email.html, and sms.html files -- fixed with 3.0.0-60 11.10.2013 for SL 200, 500, 1000 / not existing for SL 250, 300, 1200, 2000, SL 50 Gateway, SL Base.

8.1CVSS6.8AI score0.00043EPSS