First published: Tue May 23 2023(Updated: )
SolarView Compact <= 6.0 is vulnerable to Insecure Permissions. Any file on the server can be read or modified because texteditor.php is not restricted.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Contec Solarview Compact Firmware | <=6.0 | |
Contec SolarView Compact |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-29919 is a vulnerability in SolarView Compact firmware version 6.0 and below that allows any file on the server to be read or modified due to insecure permissions.
CVE-2023-29919 has a severity value of 9.1, which is considered critical.
The SolarView Compact firmware versions up to and including 6.0 are affected by CVE-2023-29919.
The CWE identifier for CVE-2023-29919 is 276.
To fix CVE-2023-29919, it is recommended to upgrade the SolarView Compact firmware to a version that addresses the insecure permissions vulnerability.