FroniusCVEs & Vulnerabilities
2 CVEs affecting Fronius products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
datamanager box 2.0 firmware 2eco 25.0-3-s 2eco 25.0-3-s firmware 2eco 27.0-3-s 2eco 27.0-3-s firmware 2galvo 1.5-1 2galvo 1.5-1 208-240 2datamanager box 2.0 2
CVE-2019-19229MEDIUM
admincgi-bin/service.fcgi on Fronius Solar Inverter devices before 3.14.1 (HM 1.12.1) allows action=download&filename= Directory Traversal.
4 Dec 2019
6.5
CVSS
CVE-2019-19228CRITICAL
Fronius Solar Inverter devices before 3.14.1 (HM 1.12.1) allow attackers to bypass authentication because the password for the today account is stored in the /tmp/web_users.conf file.
4 Dec 2019
9.8
CVSS
← PrevPage 1 / 1Next →