Contec

Sv-cpt-mc310 Firmware

19 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2023-27920

  • EPSS 0.14%
  • Published 23.05.2023 02:15:09
  • Last modified 31.01.2025 14:15:30

Improper access control vulnerability in the system date/time setting page of SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 and SV-CPT-MC310F versions prior to Ver.8.10 allows a remote authenticated attacker to alter system date/time of t...

8.8

CVE-2023-27521

  • EPSS 1.75%
  • Published 23.05.2023 02:15:09
  • Last modified 31.01.2025 14:15:30

OS command injection vulnerability in the mail setting page of SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 and SV-CPT-MC310F versions prior to Ver.8.10 allows remote authenticated attackers to execute an arbitrary OS command.

8.8

CVE-2023-27518

  • EPSS 2.46%
  • Published 23.05.2023 02:15:09
  • Last modified 31.01.2025 15:15:08

Buffer overflow vulnerability in the multiple setting pages of SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 and SV-CPT-MC310F versions prior to Ver.8.10 allows a remote authenticated attacker to execute arbitrary code.

8.8

CVE-2023-27514

  • EPSS 1.75%
  • Published 23.05.2023 02:15:09
  • Last modified 16.01.2025 20:15:31

OS command injection vulnerability in the download page of SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 and SV-CPT-MC310F versions prior to Ver.8.10 allows a remote authenticated attacker to execute an arbitrary OS command.

7.2

CVE-2023-27512

  • EPSS 0.36%
  • Published 23.05.2023 02:15:09
  • Last modified 21.11.2024 07:53:04

Use of hard-coded credentials exists in SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10, and SV-CPT-MC310F versions prior to Ver.8.10, which may allow a remote authenticated attacker to login the affected product with an administrative priv...

8.8

CVE-2022-35239

  • EPSS 0.98%
  • Published 16.08.2022 08:15:08
  • Last modified 21.11.2024 07:10:57

The image file management page of SolarView Compact SV-CPT-MC310 Ver.7.23 and earlier, and SV-CPT-MC310F Ver.7.23 and earlier contains an insufficient verification vulnerability when uploading files. If this vulnerability is exploited, arbitrary PHP ...

9.8

CVE-2022-31374

Exploit
  • EPSS 1.37%
  • Published 21.06.2022 13:15:08
  • Last modified 21.11.2024 07:04:25

An arbitrary file upload vulnerability /images/background/1.php in of SolarView Compact 6.0 allows attackers to execute arbitrary code via a crafted php file.

6.1

CVE-2022-31373

Exploit
  • EPSS 2.19%
  • Published 21.06.2022 13:15:08
  • Last modified 21.11.2024 07:04:25

SolarView Compact v6.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component Solar_AiConf.php.

5.5

CVE-2022-29302

Exploit
  • EPSS 0.06%
  • Published 12.05.2022 16:15:07
  • Last modified 21.11.2024 06:58:52

SolarView Compact ver.6.00 was discovered to contain a local file disclosure via /html/Solar_Ftp.php.

10

CVE-2022-29303

Warning Exploit
  • EPSS 94.37%
  • Published 12.05.2022 16:15:07
  • Last modified 12.03.2025 19:53:49

SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via conf_mail.php.