Skip to main content

Esolar Duo Photovoltaic System Monitor

4 CVEs product

Monthly

CVE-2012-5864 CRITICAL POC THREAT Emergency

These Sinapsi devices do not check if users that visit pages within the device have properly authenticated. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 18.3%.

Authentication Bypass Sinapsi Firmware Esolar Duo Photovoltaic System Monitor Esolar Light Photovoltaic System Monitor Esolar Photovoltaic System Monitor
NVD Exploit-DB
CVSS 2.0
9.4
EPSS
18.3%
CVE-2012-5863 CRITICAL POC Act Now

These Sinapsi devices do not check for special elements in commands sent to the system. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Sinapsi Firmware Esolar Duo Photovoltaic System Monitor Esolar Light Photovoltaic System Monitor Esolar Photovoltaic System Monitor
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
9.1%
CVE-2012-5862 CRITICAL POC THREAT Emergency

These Sinapsi devices store hard-coded passwords in the PHP file of the device. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 18.3%.

PHP Authentication Bypass Sinapsi Firmware Esolar Duo Photovoltaic System Monitor Esolar Light Photovoltaic System Monitor +1
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
18.3%
Threat
4.0
CVE-2012-5861 HIGH POC THREAT Act Now

These Sinapsi devices do not check the validity of the data before executing queries. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 13.8%.

SQLi Sinapsi Firmware Esolar Duo Photovoltaic System Monitor Esolar Light Photovoltaic System Monitor Esolar Photovoltaic System Monitor
NVD Exploit-DB
CVSS 2.0
7.8
EPSS
13.8%
EPSS 18% CVSS 9.4
CRITICAL POC THREAT Emergency

These Sinapsi devices do not check if users that visit pages within the device have properly authenticated. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 18.3%.

Authentication Bypass Sinapsi Firmware Esolar Duo Photovoltaic System Monitor +2
NVD Exploit-DB
EPSS 9% CVSS 10.0
CRITICAL POC Act Now

These Sinapsi devices do not check for special elements in commands sent to the system. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Sinapsi Firmware Esolar Duo Photovoltaic System Monitor +2
NVD Exploit-DB
EPSS 18% 4.0 CVSS 10.0
CRITICAL POC THREAT Emergency

These Sinapsi devices store hard-coded passwords in the PHP file of the device. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 18.3%.

PHP Authentication Bypass Sinapsi Firmware +3
NVD Exploit-DB
EPSS 14% CVSS 7.8
HIGH POC THREAT Act Now

These Sinapsi devices do not check the validity of the data before executing queries. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 13.8%.

SQLi Sinapsi Firmware Esolar Duo Photovoltaic System Monitor +2
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy