NVD

Id
46887  
Name
CVE-2012-5863  
Description
ping.php on the Sinapsi eSolar Light Photovoltaic System Monitor (aka Schneider Electric Ezylog photovoltaic SCADA management server), Sinapsi eSolar, and Sinapsi eSolar DUO with firmware before 2.0.2870_2.2.12 allows remote attackers to execute arbitrary commands via shell metacharacters in the ip_dominio parameter.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2012-11-23  
Modified Date
2013-02-02  
Seq
2012-5863  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
234851 46887 CVE-2012-5863 20120911 Multiple vulnerabilities in Ezylog photovoltaic management server  View
234852 46887 CVE-2012-5863 21273  View
234853 46887 CVE-2012-5863 http://www.sinapsitech.it/default.asp?active_page_id=78&news_id=88  View
234854 46887 CVE-2012-5863 http://www.us-cert.gov/control_systems/pdf/ICSA-12-325-01.pdf  View
234855 46887 CVE-2012-5863 sinapsi-ping-command-exec(80202)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
29794 JVNDB-2012-005501 複数の Sinapsi 製品の ping.php における任意のコマンドを実行される脆弱性 複数の Sinapsi 製品の ping.php には、任意のコマンドを実行される脆弱性が存在します。 CVE-2012-5863 59101 CVE-2012-5863 46887 10 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005501.html 2012-11-19 2012-11-26 View