Vulnerability CVE-2023-39167
Published: 2023-12-07   Modified: 2023-12-14

Description:
In SENEC Storage Box V1,V2 and V3 an unauthenticated remote attacker can obtain the devices' logfiles that contain sensitive data.

See advisories in our WLB2 database:
Topic
Author
Date
Low
EnBw SENEC Legacy Storage Box Log Disclosure
Ph0s
20.11.2023

Type:

CWE-862

 (Missing Authorization)

 References:
https://seclists.org/fulldisclosure/2023/Nov/5
Copyright 2024, cxsecurity.com

 

Back to Top