Vulnerabilities (CVE)

Filtered by vendor Enbw Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-39172 1 Enbw 2 Senec Storage Box, Senec Storage Box Firmware 2024-02-28 N/A 9.1 CRITICAL
The affected devices transmit sensitive information unencrypted allowing a remote unauthenticated attacker to capture and modify network traffic.
CVE-2023-39169 1 Enbw 2 Senec Storage Box, Senec Storage Box Firmware 2024-02-28 N/A 9.8 CRITICAL
The affected devices use publicly available default credentials with administrative privileges.
CVE-2023-39167 1 Enbw 2 Senec Storage Box, Senec Storage Box Firmware 2024-02-28 N/A 7.5 HIGH
In SENEC Storage Box V1,V2 and V3 an unauthenticated remote attacker can obtain the devices' logfiles that contain sensitive data.
CVE-2023-39171 1 Enbw 2 Senec Storage Box, Senec Storage Box Firmware 2024-02-28 N/A 7.2 HIGH
SENEC Storage Box V1,V2 and V3 accidentially expose a management UI accessible with publicly known admin credentials.