Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-15859 PoC — socomec DIRIS A-40 信息泄露漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2019/CVE-2019-15859.yaml
Associated Vulnerability
Title:socomec DIRIS A-40 信息泄露漏洞 (CVE-2019-15859)
Description:socomec DIRIS A-40是法国溯高美索克曼(socomec)公司的一款用于功率计量监控的电气设备。 socomec DIRIS A-40 48250501之前版本中的web界面存在安全漏洞。攻击者借助/password.jsn URI利用该漏洞获得访问权限。
Description
Socomec DIRIS A-40 devices before 48250501 are susceptible to a password disclosure vulnerability in the web interface that could allow remote attackers to get full access to a device via the /password.jsn URI.
File Snapshot

 id: CVE-2019-15859

info:
  name: Socomec DIRIS A-40 Devices Password Disclosure
  author: geeknik
 

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.