Vulnerabilities > Fronius
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-02-01 | CVE-2023-37621 | Exposure of Resource to Wrong Sphere vulnerability in Fronius Datalogger web 2.0.54 An issue in Fronius Datalogger Web v.2.0.5-4, allows remote attackers to obtain sensitive information via a crafted request. | 9.8 |
2019-12-04 | CVE-2019-19229 | Path Traversal vulnerability in Fronius products admincgi-bin/service.fcgi on Fronius Solar Inverter devices before 3.14.1 (HM 1.12.1) allows action=download&filename= Directory Traversal. | 4.0 |
2019-12-04 | CVE-2019-19228 | Cleartext Storage of Sensitive Information vulnerability in Fronius products Fronius Solar Inverter devices before 3.14.1 (HM 1.12.1) allow attackers to bypass authentication because the password for the today account is stored in the /tmp/web_users.conf file. | 5.0 |