CVE-2023-29121 | Enel X JuiceBox Pro 3.0 22kW Cellular up to 2.1.1.0_JB3VU096A TCF Agent Service access control

Inserito da Angelo Barbosa | Nov 5, 2024 | CVE

A vulnerability was found in Enel X JuiceBox Pro 3.0 22kW Cellular up to 2.1.1.0_JB3VU096A. It has been rated as critical. Affected by this issue is some unknown functionality of the component TCF Agent Service. The manipulation leads to improper access controls.

This vulnerability is handled as CVE-2023-29121. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2023-29121 | Enel X JuiceBox Pro 3.0 22kW Cellular up to 2.1.1.0_JB3VU096A TCF Agent Service access control

Post correlati

CVE-2024-3913 | Phoenix Contact CHARX SEC-3150 1139012 up to 1.6.x System Startup file access (VDE-2024-022)

CVE-2023-50968 | Apache OFBiz up to 18.12.10 server-side request forgery

CVE-2024-45518 | Synacor Zimbra Collaboration Suite HTTP Request server-side request forgery

CVE-2024-1926 | SourceCodester Free and Open Source Inventory Management System 1.0 search_sales_report.php customer sql injection