Jon Hurtado

Name of the Vulnerable Software and Affected Versions: Outback Power - Mojave Inverter versions all Description: An attacker may inject commands via specially-crafted post requests. Recommendations: For all versions, consider restricting access to the post request functionality until a patch is available. As a temporary workaround, avoid using specially-crafted post requests to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Outback Power - Mojave Inverter versions all Description: An attacker may modify the URL to discover sensitive information about the target network. Recommendations: For all versions, consider restricting access to sensitive network information as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Mojave Inverter versions all **Description** The Mojave Inverter uses the GET method for sensitive information. This issue is being actively exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.