Enbw: Security Vulnerabilities
SENEC Storage Box V1,V2 and V3 accidentially expose a management UI accessible with publicly known admin credentials.
CVSS Score
7.2
EPSS Score
0.002
Published
2023-12-07
The affected devices use publicly available default credentials with administrative privileges.
CVSS Score
9.8
EPSS Score
0.003
Published
2023-12-07
In SENEC Storage Box V1,V2 and V3 an unauthenticated remote attacker can obtain the devices' logfiles that contain sensitive data.
CVSS Score
7.5
EPSS Score
0.003
Published
2023-12-07
The affected devices transmit sensitive information unencrypted allowing a remote unauthenticated attacker to capture and modify network traffic.
CVSS Score
9.1
EPSS Score
0.002
Published
2023-12-07