MidnightBSD

Advisories for accuenergy

CVE-2014-2373 HIGH

The AXN-NET Ethernet module accessory 3.04 for the Accuenergy Acuvim II allows remote attackers to discover passwords and modify settings via vectors involving JavaScript.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-602,CWE-287,

Products Affected

Vendor Product Version
accuenergy acuvim_ii -
accuenergy axm-net 3.04
CVE-2014-2374 HIGH

The AXN-NET Ethernet module accessory 3.04 for the Accuenergy Acuvim II allows remote attackers to discover passwords and modify settings via vectors involving JavaScript.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-602,CWE-200,

Products Affected

Vendor Product Version
accuenergy acuvim_ii -
accuenergy axm-net 3.04
CVE-2016-2293 HIGH

The AXM-NET module in Accuenergy Acuvim II NET Firmware 3.08 and Acuvim IIR NET Firmware 3.08 allows remote attackers to discover settings via a direct request to an unspecified URL.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
accuenergy acuvim_ii_net_firmware *
accuenergy acuvim_iir_net_firmware *
CVE-2016-2294 MEDIUM

The AXM-NET module in Accuenergy Acuvim II NET Firmware 3.08 and Acuvim IIR NET Firmware 3.08 allows remote attackers to discover a cleartext mail-server password via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
accuenergy acuvim_ii_net_firmware *
accuenergy acuvim_iir_net_firmware *