Fronius Eco_27.0-3-s_firmware
2 CVEs affecting Fronius Eco_27.0-3-s_firmware. Latest disclosed: 2019-12-04. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2019-19228 | Critical | 9.8 | 2019-12-04 | Fronius Solar Inverter devices before 3.14.1 (HM 1.12.1) allow attackers to bypass authentication because the password for the today account is stored in the /… |
CVE-2019-19229 | Medium | 6.5 | 2019-12-04 | admincgi-bin/service.fcgi on Fronius Solar Inverter devices before 3.14.1 (HM 1.12.1) allows action=download&filename= Directory Traversal. |