Solar-log 1000 Firmware@* Security Vulnerabilities and Issues — Solar-log 1000 Firmware@* CVE List

Lucene search

Solar-logSolar-log 1000 Firmware*

3 matches found

CVE•added 2023/01/26 9:18 p.m.•45 views

CVE-2022-47767

A backdoor in Solar-Log Gateway products allows remote access via web panel gaining super administration privileges to the attacker. This affects Solar-Log devices that use firmware version v4.2.7 up to v5.1.1 (included). This does not exist in SL 200, 500, 1000 / fixed in 4.2.8 for SL 250, 300, 12...

9.8CVSS9.6AI score0.00392EPSS

CVE•added 2024/07/26 8:15 p.m.•41 views

CVE-2024-40117

Incorrect access control in Solar-Log 1000 before v2.8.2 and build 52- 23.04.2013 allows attackers to obtain Administrative privileges via connecting to the web administration server. Not existing for SL 200, 500, 1000 / fixed in 4.2.8 for SL 250, 300, 1200, 2000, SL 50 Gateway / fixed in 5.1.2 / 6...

9.8CVSS9.4AI score0.00095EPSS

CVE•added 2024/07/26 8:15 p.m.•30 views

CVE-2024-40116

An issue in Solar-Log 1000 before v2.8.2 and build 52-23.04.2013 was discovered to store plaintext passwords in the export.html, email.html, and sms.html files -- fixed with 3.0.0-60 11.10.2013 for SL 200, 500, 1000 / not existing for SL 250, 300, 1200, 2000, SL 50 Gateway, SL Base.

8.1CVSS6.8AI score0.00043EPSS