CirCarLife 漏洞列表

CirCarLife Scada before 4.3 allows remote attackers to obtain sensitive information via a direct request for the html/log or services/system/info.html URI. CirCarLife is an internet-connected electric vehicle charging station. fofa: (app="CIRCONTROL-CirCarLife-Scada" || app="CirCarLife-Scada-v4.2.4" || app="CirCarLife-Scada-v4.2.3")

CirCarLife before 4.3 is susceptible to improper authentication. An internal installation path disclosure exists due to the lack of authentication for /html/repository.System. An attacker can obtain sensitive information, modify data, and/or execute unauthorized operations.

CirCarLife before 4.3 is susceptible to improper authentication. A PLC status disclosure exists due to lack of authentication for /html/devstat.html. An attacker can obtain sensitive information, modify data, and/or execute unauthorized operations.

CirCarLife before 4.3 is susceptible to improper authentication. A system software information disclosure exists due to lack of authentication for /html/device-id. An attacker can obtain sensitive information, modify data, and/or execute unauthorized operations.

A CirCarLife admin panel was accessed. CirCarLife is an internet-connected electric vehicle charging station shodan: title:"- setup" html:"Modem setup"

CirCarLife Scada before 4.3 allows remote attackers to obtain sensitive information via a direct request for the html/log or services/system/info.html URI. CirCarLife is an internet-connected electric vehicle charging station.

CirCarLife before 4.3 is susceptible to improper authentication. An internal installation path disclosure exists due to the lack of authentication for /html/repository.System. An attacker can obtain sensitive information, modify data, and/or execute unauthorized operations.

CirCarLife before 4.3 is susceptible to improper authentication. A PLC status disclosure exists due to lack of authentication for /html/devstat.html. An attacker can obtain sensitive information, modify data, and/or execute unauthorized operations.

CirCarLife before 4.3 is susceptible to improper authentication. A system software information disclosure exists due to lack of authentication for /html/device-id. An attacker can obtain sensitive information, modify data, and/or execute unauthorized operations.

CIRCONTROL CirCarLife是西班牙CIRCONTROL公司的一套停车场自动化管理系统,CirCarLife可直接对/***/***.html配置文件修改,从而修改管理账户密码等信息。

【漏洞对象】Circontrol CirCarLife Scada 【漏洞描述】 Circontrol CirCarLifeScada是西班牙Circontrol公司的一套停车场自动化管理系统。Circontrol CirCarLifeScada中存在安全漏洞。远程攻击者可通过对html/log发送直接请求利用该漏洞获取敏感信息。

【漏洞对象】Circontrol CirCarLife Scada 【漏洞描述】 Circontrol CirCarLifeScada是西班牙Circontrol公司的一套停车场自动化管理系统。 Circontrol CirCarLife Scada4.2.4版本中存在安全漏洞。远程攻击者可通过对/html/device-id发送直接请求利用该漏洞获取敏感信息。

【漏洞对象】Circontrol CirCarLife Scada 【漏洞描述】 Circontrol CirCarLifeScada是西班牙Circontrol公司的一套停车场自动化管理系统。Circontrol CirCarLifeScada中存在安全漏洞。远程攻击者可通过对/services/user/values.xml文件var参数发送直接请求利用该漏洞获取充电站使用的PLC的状态。

【漏洞对象】Circontrol CirCarLife Scada 【漏洞描述】 Circontrol CirCarLifeScada是西班牙Circontrol公司的一套停车场自动化管理系统。Circontrol CirCarLifeScada中存在安全漏洞。远程攻击者可通过对/html/repository发送直接请求利用该漏洞获取内部安装路径。

【漏洞对象】Circontrol CirCarLife Scada 【漏洞描述】 Circontrol CirCarLifeScada是西班牙Circontrol公司的一套停车场自动化管理系统。Circontrol CirCarLifeScada中存在安全漏洞。远程攻击者可通过对/services/system/info.html发送直接请求利用该漏洞获取敏感信息。