An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. Successful exploitation of this CROSS-SITE REQUEST FORGERY (CSRF) vulnerability can allow execution of unauthorized actions on the device such as configuration parameter changes, and saving modified configuration.
oryginał ENCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HCarlosgavazzi Vmu C Em
HWCarlosgavazziwszystkie wersjeCarlosgavazzi Vmu C Em Firmware
OSCarlosgavazziwszystkie wersjeCarlosgavazzi Vmu C Pv
HWCarlosgavazziwszystkie wersjeCarlosgavazzi Vmu C Pv Firmware
OSCarlosgavazziwszystkie wersje
Powiązane podatności
An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to fir...
An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to fir...
The Carlo Gavazzi EOS-Box does not check the validity of the data before executing queries. By accessing the...
The Carlo Gavazzi EOS-Box stores hard-coded passwords in the PHP file of the device. By using the hard-code...