Vulnerabilities > Contec > SV CPT Mc310 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-06-21 CVE-2022-31374 Unrestricted Upload of File with Dangerous Type vulnerability in Contec Sv-Cpt-Mc310 Firmware 6.0
An arbitrary file upload vulnerability /images/background/1.php in of SolarView Compact 6.0 allows attackers to execute arbitrary code via a crafted php file.
network
low complexity
contec CWE-434
critical
 9.8
9.8
2022-05-12 CVE-2022-29303 OS Command Injection vulnerability in Contec Sv-Cpt-Mc310 Firmware 6.00
SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via conf_mail.php.
network
low complexity
contec CWE-78
critical
 9.8
9.8
2021-02-24 CVE-2021-20658 OS Command Injection vulnerability in Contec Sv-Cpt-Mc310 Firmware 6.0/6.00
SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an attacker to execute arbitrary OS commands with the web server privilege via unspecified vectors.
network
low complexity
contec CWE-78
critical
 9.8
9.8