CVE-2022-29303

Name of the Vulnerable Software and Affected Versions SolarView Compact version 6.00

Description The issue exists due to the failure to neutralize special elements used in an operating system command in the conf mail.php component of the SolarView Compact device. This can allow an attacker to execute arbitrary commands. The vulnerability can be exploited via the conf mail.php file, potentially allowing for command injection attacks.

Recommendations For SolarView Compact version 6.00, consider disabling access to the conf mail.php file as a temporary workaround until a patch is available. Restricting access to this component can help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.