Unrated severityNVD Advisory· Published Nov 23, 2012· Updated Apr 29, 2026

CVE-2012-5864

Description

These Sinapsi devices do not check if users that visit pages within the device have properly authenticated. By directly visiting the pages within the device, attackers can gain unauthorized access with administrative privileges.

Affected products

Sinapsitech/Sinapsi Firmware
cpe:2.3:o:sinapsitech:sinapsi_firmware:*:*:*:*:*:*:*:*
Range: <=2.0.2870
Sinapsitech/Esolar Duo Photovoltaic System Monitor
cpe:2.3:h:sinapsitech:esolar_duo_photovoltaic_system_monitor:-:*:*:*:*:*:*:*
Sinapsitech/Esolar Light Photovoltaic System Monitor
cpe:2.3:h:sinapsitech:esolar_light_photovoltaic_system_monitor:-:*:*:*:*:*:*:*
Sinapsitech/Esolar Photovoltaic System Monitor
cpe:2.3:h:sinapsitech:esolar_photovoltaic_system_monitor:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

archives.neohapsis.com/archives/bugtraq/2012-09/0045.htmlnvdExploit
www.exploit-db.com/exploits/21273/nvdExploit
www.us-cert.gov/control_systems/pdf/ICSA-12-325-01.pdfnvdUS Government Resource
www.sinapsitech.it/default.aspnvd
exchange.xforce.ibmcloud.com/vulnerabilities/80200nvd
exchange.xforce.ibmcloud.com/vulnerabilities/80203nvd
www.cisa.gov/news-events/ics-advisories/icsa-12-325-01nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.015
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000