Skip to main content

Energy Communication Unit Firmware

1 CVEs product

Monthly

CVE-2023-28343 CRITICAL POC THREAT Act Now

OS command injection affects Altenergy Power Control Software C1.2.5 via shell metacharacters in the index.php/management/set_timezone timezone parameter, because of set_timezone in. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Energy Communication Unit Firmware
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
85.3%
EPSS 85% CVSS 9.8
CRITICAL POC THREAT Act Now

OS command injection affects Altenergy Power Control Software C1.2.5 via shell metacharacters in the index.php/management/set_timezone timezone parameter, because of set_timezone in. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Energy Communication Unit Firmware
NVD GitHub Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy