Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Carlo Gavazzi EOS Box Hard-Coded Credentials
Vulnerability Description
The Carlo Gavazzi EOS-Box stores hard-coded passwords in the PHP file of the device. By using the hard-coded passwords, attackers can log into the device with administrative privileges. This could allow the attacker to have unauthorized access.
CVSS Information
N/A
Vulnerability Type
使用硬编码的凭证
Vulnerability Title
Carlo Gavazzi EOS-BOX 安全绕过漏洞
Vulnerability Description
Carlo Gavazzi EOS-Box是一款嵌入式PC,CEOS-Box Photovoltaic Monitoring System是一款光伏监控系统。EOS-Box一般部署在可再生能源部门。 Carlo Gavazzi EOS-Box 固件1.0.0.1080_2.1.10之前版本中存在漏洞,该漏洞源于创建多个硬编码账户。通过读取PHP脚本中的密码,远程攻击者利用该漏洞获得管理员访问权限。
CVSS Information
N/A
Vulnerability Type
N/A