cve/CVE-2020-9306.md at 555e9c7de4cd05afceb29c861f75c943c3c8d5d4

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-30 04:49:42 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

Description

Tesla SolarCity Solar Monitoring Gateway through 5.46.43 has a "Use of Hard-coded Credentials" issue because Digi ConnectPort X2e uses a .pyc file to store the cleartext password for the python user account.

POC

Reference

https://www.fireeye.com/blog/threat-research/2021/02/solarcity-exploitation-of-x2e-iot-device-part-two.html

Github

No PoCs found on GitHub currently.

735 B Raw Blame History

CVE-2020-9306

Description

POC

Reference

Github

735 B

Raw Blame History