Unrated severityNVD Advisory· Published Dec 23, 2012· Updated Jun 16, 2026
CVE-2012-6427
CVE-2012-6427
Description
The Carlo Gavazzi EOS-Box
does not check the validity of the data before executing queries. By accessing the SQL table of certain pages that do not require authentication, attackers can leak information from the device. This could allow the attacker to compromise confidentiality.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- cpe:2.3:h:carlosgavazzi:eos-box_photovoltaic_monitoring_system:-:*:*:*:*:*:*:*
- cpe:2.3:o:carlosgavazzi:eos-box_photovoltaic_monitoring_system_firmware:*:*:*:*:*:*:*:*Range: <=1.0.0
Patches
Vulnerability mechanics
References
2- www.us-cert.gov/control_systems/pdf/ICSA-12-354-02.pdfnvdUS Government Resource
- www.cisa.gov/news-events/ics-advisories/icsa-12-354-02nvd
News mentions
0No linked articles in our index yet.