Voltronicpower Viewpower
22 CVEs affecting Voltronicpower Viewpower. Latest disclosed: 2024-05-03. Critical: 13, High: 9.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-51595 | Critical | 9.8 | 2024-05-03 | Voltronic Power ViewPower Pro selectDeviceListBy SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbit… |
CVE-2023-51593 | Critical | 9.8 | 2024-05-03 | Voltronic Power ViewPower Pro Expression Language Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrar… |
CVE-2023-51590 | Critical | 9.8 | 2024-05-03 | Voltronic Power ViewPower Pro UpLoadAction Unrestricted File Upload Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute… |
CVE-2023-51586 | Critical | 9.8 | 2024-05-03 | Voltronic Power ViewPower Pro selectEventConfig SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitr… |
CVE-2023-51583 | Critical | 9.8 | 2024-05-03 | Voltronic Power ViewPower UpsScheduler Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbi… |
CVE-2023-51582 | Critical | 9.8 | 2024-05-03 | Voltronic Power ViewPower LinuxMonitorConsole Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execu… |
CVE-2023-51581 | Critical | 9.8 | 2024-05-03 | Voltronic Power ViewPower MacMonitorConsole Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute… |
CVE-2023-51576 | Critical | 9.8 | 2024-05-03 | Voltronic Power ViewPower Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrar… |
CVE-2023-51575 | Critical | 9.8 | 2024-05-03 | Voltronic Power ViewPower MonitorConsole Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute ar… |
CVE-2023-51574 | Critical | 9.8 | 2024-05-03 | Voltronic Power ViewPower updateManagerPassword Exposed Dangerous Method Authentication Bypass Vulnerability. This vulnerability allows remote attackers to byp… |
CVE-2023-51573 | Critical | 9.8 | 2024-04-01 | Voltronic Power ViewPower Pro updateManagerPassword Exposed Dangerous Function Authentication Bypass Vulnerability. This vulnerability allows remote attackers… |
CVE-2023-51572 | Critical | 9.8 | 2024-04-01 | Voltronic Power ViewPower Pro getMacAddressByIp Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute ar… |
CVE-2023-51570 | Critical | 9.8 | 2024-04-01 | Voltronic Power ViewPower Pro Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbi… |
CVE-2023-51585 | High | 8.8 | 2024-05-03 | Voltronic Power ViewPower USBCommEx shutdown Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbit… |
CVE-2023-51584 | High | 8.8 | 2024-05-03 | Voltronic Power ViewPower USBCommEx shutdown Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execut… |
CVE-2023-51588 | High | 7.8 | 2024-05-03 | Voltronic Power ViewPower Pro MySQL Use of Hard-coded Credentials Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escala… |
CVE-2023-51579 | High | 7.8 | 2024-05-03 | Voltronic Power ViewPower Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privi… |
CVE-2023-51577 | High | 7.8 | 2024-05-03 | Voltronic Power ViewPower setShutdown Exposed Dangerous Method Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate… |
CVE-2023-51591 | High | 7.5 | 2024-05-03 | Voltronic Power ViewPower Pro doDocument XML External Entity Processing Information Disclosure Vulnerability. This vulnerability allows remote attackers to dis… |
CVE-2023-51587 | High | 7.5 | 2024-05-03 | Voltronic Power ViewPower getModbusPassword Missing Authentication Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose… |