CRITICALβœ“ PATCHπŸ‡΅πŸ‡± Wersja polska

CVE-2022-47767

CVSS 9.8v3.1pub. 2023-01-26upd. 2025-04-01

A backdoor in Solar-Log Gateway products allows remote access via web panel gaining super administration privileges to the attacker. This affects Solar-Log devices that use firmware version v4.2.7 up to v5.1.1 (included). This does not exist in SL 200, 500, 1000 / fixed in 4.2.8 for SL 250, 300, 1200, 2000, SL 50 Gateway / fixed in 5.1.2 / 6.0.0 for SL Base.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Solar Log 1000

    HW
    Solar-Log
    wszystkie wersje
  • Solar Log 1000 Firmware

    OS
    Solar-Log
    < 4.2.8_1175.0.0 – 5.1.2_156 (bez)
  • Solar Log 1000 Pm\+

    HW
    Solar-Log
    wszystkie wersje
  • Solar Log 1000 Pm\+ Firmware

    OS
    Solar-Log
    5.0.0 – 5.1.2_156 (bez)< 4.2.8_117
  • Solar Log 1200

    HW
    Solar-Log
    wszystkie wersje
  • Solar Log 1200 Firmware

    OS
    Solar-Log
    5.0.0 – 5.1.2_156 (bez)< 4.2.8_117
  • Solar Log 2000

    HW
    Solar-Log
    wszystkie wersje
  • Solar Log 2000 Firmware

    OS
    Solar-Log
    5.0.0 – 5.1.2_156 (bez)< 4.2.8_117
  • Solar Log 250

    HW
    Solar-Log
    wszystkie wersje
  • Solar Log 250 Firmware

    OS
    Solar-Log
    < 4.2.8_1175.0.0 – 5.1.2_156 (bez)
  • Solar Log 300

    HW
    Solar-Log
    wszystkie wersje
  • Solar Log 300 Firmware

    OS
    Solar-Log
    < 4.2.8_1175.0.0 – 5.1.2_156 (bez)
  • Solar Log 50

    HW
    Solar-Log
    wszystkie wersje
  • Solar Log 500

    HW
    Solar-Log
    wszystkie wersje
  • Solar Log 500 Firmware

    OS
    Solar-Log
    5.0.0 – 5.1.2_156 (bez)< 4.2.8_117
  • Solar Log 50 Firmware

    OS
    Solar-Log
    < 4.2.8_1175.0.0 – 5.1.2_156 (bez)
  • Solar Log 800e

    HW
    Solar-Log
    wszystkie wersje
  • Solar Log 800e Firmware

    OS
    Solar-Log
    5.0.0 – 5.1.2_156 (bez)< 4.2.8_117
🟒
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2017-20022HIGH7.5ten sam produkt

A vulnerability has been found in Solare Solar-Log 2.8.4-56/3.5.2-85 and classified as problematic. This vulne...

CVE-2017-20025HIGH7.3ten sam produkt

A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85. It has been declared as critical. Affected by...

CVE-2017-20021MEDIUM6.5ten sam produkt

A vulnerability, which was classified as critical, was found in Solare Solar-Log 2.8.4-56/3.5.2-85. This affec...

CVE-2017-20019MEDIUM4.3ten sam produkt

A vulnerability classified as problematic was found in Solare Solar-Log 2.8.4-56/3.5.2-85. Affected by this vu...

CVE-2017-20023MEDIUM6.3ten sam produkt

A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85 and classified as critical. This issue affects...

CVE-2022-47767 β€” Solar-Log β€” Solar-Log 1000 β€” CRITICAL β€” CVSS 9.8 | CVEbaza.pl