Vulnerabilities > Fronius

DATE CVE VULNERABILITY TITLE RISK
2024-02-01 CVE-2023-37621 Exposure of Resource to Wrong Sphere vulnerability in Fronius Datalogger web 2.0.54
An issue in Fronius Datalogger Web v.2.0.5-4, allows remote attackers to obtain sensitive information via a crafted request.
network
low complexity
fronius CWE-668
critical
9.8
2019-12-04 CVE-2019-19229 Path Traversal vulnerability in Fronius products
admincgi-bin/service.fcgi on Fronius Solar Inverter devices before 3.14.1 (HM 1.12.1) allows action=download&filename= Directory Traversal.
network
low complexity
fronius CWE-22
4.0
2019-12-04 CVE-2019-19228 Cleartext Storage of Sensitive Information vulnerability in Fronius products
Fronius Solar Inverter devices before 3.14.1 (HM 1.12.1) allow attackers to bypass authentication because the password for the today account is stored in the /tmp/web_users.conf file.
network
low complexity
fronius CWE-312
5.0