CPE-7250779E-61E9-49C0-BD2B-32584135E9F3 Detail

CPE Details

Contec SV-CPT-MC310 Firmware 6.0

Vendor

contec

Product

sv-cpt-mc310_firmware

Version

6.0

Created

2022-06-22
23h39 +00:00

Modified

2023-02-21
16h43 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:o:contec:sv-cpt-mc310_firmware:6.0:::::::*

Informations

Vendor

contec

Product

sv-cpt-mc310_firmware

Version

6.0

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2023-27518	2023-05-23 00h00 +00:00	Buffer overflow vulnerability in the multiple setting pages of SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 and SV-CPT-MC310F versions prior to Ver.8.10 allows a remote authenticated attacker to execute arbitrary code.	8.8	High
CVE-2023-27521	2023-05-23 00h00 +00:00	OS command injection vulnerability in the mail setting page of SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 and SV-CPT-MC310F versions prior to Ver.8.10 allows remote authenticated attackers to execute an arbitrary OS command.	8.8	High
CVE-2023-27920	2023-05-23 00h00 +00:00	Improper access control vulnerability in the system date/time setting page of SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 and SV-CPT-MC310F versions prior to Ver.8.10 allows a remote authenticated attacker to alter system date/time of the affected product.	4.3	Medium
CVE-2023-27512	2023-05-22 22h00 +00:00	Use of hard-coded credentials exists in SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10, and SV-CPT-MC310F versions prior to Ver.8.10, which may allow a remote authenticated attacker to login the affected product with an administrative privilege and perform an unintended operation.	7.2	High
CVE-2023-27514	2023-05-22 22h00 +00:00	OS command injection vulnerability in the download page of SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10 and SV-CPT-MC310F versions prior to Ver.8.10 allows a remote authenticated attacker to execute an arbitrary OS command.	8.8	High
CVE-2022-35239	2022-08-16 05h01 +00:00	The image file management page of SolarView Compact SV-CPT-MC310 Ver.7.23 and earlier, and SV-CPT-MC310F Ver.7.23 and earlier contains an insufficient verification vulnerability when uploading files. If this vulnerability is exploited, arbitrary PHP code may be executed if a remote authenticated attacker uploads a specially crafted PHP file.	8.8	High
CVE-2022-31373	2022-06-21 11h00 +00:00	SolarView Compact v6.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component Solar_AiConf.php.	6.1	Medium
CVE-2022-31374	2022-06-21 11h00 +00:00	An arbitrary file upload vulnerability /images/background/1.php in of SolarView Compact 6.0 allows attackers to execute arbitrary code via a crafted php file.	9.8	Critical
CVE-2021-20662	2021-02-24 02h51 +00:00	Missing authentication for critical function in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an attacker to alter the setting information without the access privileges via unspecified vectors.	7.5	High
CVE-2021-20661	2021-02-24 02h51 +00:00	Directory traversal vulnerability in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows authenticated attackers to delete arbitrary files and/or directories on the server via unspecified vectors.	8.1	High
CVE-2021-20659	2021-02-24 02h51 +00:00	SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an authenticated attacker to upload arbitrary files via unspecified vectors. If the file is PHP script, an attacker may execute arbitrary code.	8.8	High
CVE-2021-20660	2021-02-24 02h51 +00:00	Cross-site scripting vulnerability in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an attacker to inject an arbitrary script via unspecified vectors.	6.1	Medium
CVE-2021-20658	2021-02-24 02h51 +00:00	SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an attacker to execute arbitrary OS commands with the web server privilege via unspecified vectors.	9.8	Critical
CVE-2021-20656	2021-02-24 02h51 +00:00	Exposure of information through directory listing in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an authenticated attacker to obtain the information inside the system, such as directories and/or file configurations via unspecified vectors.	4.3	Medium
CVE-2021-20657	2021-02-24 02h51 +00:00	Improper access control vulnerability in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an authenticated attacker to obtain and/or alter the setting information without the access privilege via unspecified vectors.	5.4	Medium
CVE-2014-2324	2014-03-14 14h00 +00:00	Multiple directory traversal vulnerabilities in (1) mod_evhost and (2) mod_simple_vhost in lighttpd before 1.4.35 allow remote attackers to read arbitrary files via a .. (dot dot) in the host name, related to request_check_hostname.	5

Contec SV-CPT-MC310 Firmware 6.0

CPE Details

CPE Name: cpe:2.3:o:contec:sv-cpt-mc310_firmware:6.0:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:o:contec:sv-cpt-mc310_firmware:6.0:::::::*