Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2020-28215
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A CWE-862: Missing Authorization vulnerability exists in Easergy T300 (firmware 2.7 and older), that could cause a wide range of problems, including information exposures, denial of service, and arbitrary code execution when access control checks are not applied consistently.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
授权机制缺失
Source: NVD (National Vulnerability Database)
Vulnerability Title
Schneider Electric Easergy T300 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Schneider Electric Easergy T300是法国施耐德电气(Schneider Electric)公司的一款用于电力行业的远程终端单元。 Schneider Electric Easergy T300存在安全漏洞,该漏洞源于设备缺少关键功能的身份验证,缺少授权,缺少敏感数据的加密,渲染的UI层或框架的限制不当,攻击者可利用该漏洞获取敏感信息,拒绝服务和远程执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
-Easergy T300 (firmware 2.7 and older) Easergy T300 (firmware 2.7 and older) -
II. Public POCs for CVE-2020-28215
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2020-28215
Please Login to view more intelligence information
New Vulnerabilities
Product: Easergy T300 (firmware 2.7 and older)
Vendor: n/a
Same weakness: CWE-862
V. Comments for CVE-2020-28215

No comments yet

Leave a comment