Skip to main content

Eos Box Photovoltaic Monitoring System

2 CVEs product

Monthly

CVE-2012-6428 CRITICAL Act Now

The Carlo Gavazzi EOS-Box stores hard-coded passwords in the PHP file of the device. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP Authentication Bypass Eos Box Photovoltaic Monitoring System Firmware Eos Box Photovoltaic Monitoring System
NVD
CVSS 2.0
10.0
EPSS
0.2%
CVE-2012-6427 HIGH This Week

The Carlo Gavazzi EOS-Box does not check the validity of the data before executing queries. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Eos Box Photovoltaic Monitoring System Firmware Eos Box Photovoltaic Monitoring System
NVD
CVSS 2.0
7.8
EPSS
0.2%
EPSS 0% CVSS 10.0
CRITICAL Act Now

The Carlo Gavazzi EOS-Box stores hard-coded passwords in the PHP file of the device. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP Authentication Bypass Eos Box Photovoltaic Monitoring System Firmware +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

The Carlo Gavazzi EOS-Box does not check the validity of the data before executing queries. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Eos Box Photovoltaic Monitoring System Firmware Eos Box Photovoltaic Monitoring System
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy