The AXN-NET Ethernet module accessory 3.04 for the Accuenergy Acuvim II allows remote attackers to discover passwords and modify settings via vectors involving JavaScript.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-602,CWE-287,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| accuenergy | acuvim_ii | - |
| accuenergy | axm-net | 3.04 |
The AXN-NET Ethernet module accessory 3.04 for the Accuenergy Acuvim II allows remote attackers to discover passwords and modify settings via vectors involving JavaScript.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-602,CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| accuenergy | acuvim_ii | - |
| accuenergy | axm-net | 3.04 |
The AXM-NET module in Accuenergy Acuvim II NET Firmware 3.08 and Acuvim IIR NET Firmware 3.08 allows remote attackers to discover settings via a direct request to an unspecified URL.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-264,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| accuenergy | acuvim_ii_net_firmware | * |
| accuenergy | acuvim_iir_net_firmware | * |
The AXM-NET module in Accuenergy Acuvim II NET Firmware 3.08 and Acuvim IIR NET Firmware 3.08 allows remote attackers to discover a cleartext mail-server password via unspecified vectors.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| accuenergy | acuvim_ii_net_firmware | * |
| accuenergy | acuvim_iir_net_firmware | * |