PT-2024-16714 · Sma · Sunny Central Sc 1760-Us+28
Pierre Martin
·
Published
2024-11-27
·
Updated
2024-11-27
·
CVE-2024-11025
CVSS v3.1
5.4
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
No specific software name or versions are mentioned in the provided descriptions.
Description
An authenticated attacker with low privileges may use a SQL Injection vulnerability in the affected product's administration panel to gain read and write access to a specific log file of the device. This allows the attacker to potentially exploit the device further.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sunny Central Sc 1760-Us
Sunny Central Sc 1850-Us
Sunny Central Sc 2000 Ev-Us
Sunny Central Sc 2200-Us
Sunny Central Sc 2500 Ev-Us
Sunny Central Sc 2660 Up
Sunny Central Sc 2750 Ev-Us
Sunny Central Sc 2750 Up-Us
Sunny Central Sc 2800 Up
Sunny Central Sc 2930 Up
Sunny Central Sc 3060 Up
Sunny Central Sc 4000 Up
Sunny Central Sc 4200 Up
Sunny Central Sc 4400 Up
Sunny Central Sc 4600 Up
Sunny Central Sc-2200-10
Sunny Central Sc-2475-10
Sunny Central Storage Scs 2300 Up-Xt
Sunny Central Storage Scs 2400 Up-Xt
Sunny Central Storage Scs 2530 Up-Xt
Sunny Central Storage Scs 2630 Up-Xt
Sunny Central Storage Scs 3450 Up
Sunny Central Storage Scs 3600 Up
Sunny Central Storage Scs 3800 Up
Sunny Central Storage Scs 3950 Up
Sunny Central Storage Scs-1900-10
Sunny Central Storage Scs-2200-10
Sunny Central Storage Scs-2475-10
Sunny Central Storage Scs-2900-10