all InfoSec news
Active Exploitation of SolarView Compact Command Injection Vulnerabilities (CVE-2022-40881, CVE-2022-29303)
July 7, 2023, 6:38 a.m. |
FortiGuard Labs | FortiGuard Center - Threat Signal Report fortiguard.fortinet.com
SolarView Compact is a photovoltaic (PV) power generation measurement and monitoring device developed by Contec.
What is the Attack?
CVE-2022-29303 is a command injection vulnerability in SolarView Compact that allows attackers to steal or modify information, destroy the system, or execute malicious programs by entering commands from the test email transmission screen.
CVE-2022-40881 is a command injection vulnerability in SolarView Compat that allows attackers to steal or modify information, destroy the system, or execute malicious programs …
attack attackers command command injection contec cve cve-2022-29303 destroy device exploitation information injection malicious measurement monitoring power solarview steal system vulnerabilities vulnerability what is
More from fortiguard.fortinet.com / FortiGuard Labs | FortiGuard Center - Threat Signal Report
Jobs in InfoSec / Cybersecurity
Senior Security Researcher
@ Microsoft | Redmond, Washington, United States
Sr. Cyber Risk Analyst
@ American Heart Association | Dallas, TX, United States
Cybersecurity Engineer 2/3
@ Scaled Composites, LLC | Mojave, CA, US
Information Security Operations Manager
@ DP World | Charlotte, NC, United States
Sr Cyber Security Engineer I
@ Staples | Framingham, MA, United States
Security Engineer - Heartland (Remote)
@ GuidePoint Security LLC | Remote in the US