VYPR

Energy Management Controller with Cloud Services

by Sharp

CVEs (4)

  • CVE-2024-23789Feb 14, 2024
    risk 0.00cvss epss 0.01

    Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to execute an arbitrary OS command on the affected product.

  • CVE-2024-23788Feb 14, 2024
    risk 0.00cvss epss 0.01

    Server-side request forgery vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to send an arbitrary HTTP request (GET) from the affected product.

  • CVE-2024-23786Feb 14, 2024
    risk 0.00cvss epss 0.01

    Cross-site scripting vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to execute an arbitrary script on the web browser of the user who is accessing the management page…

  • CVE-2024-23785Feb 14, 2024
    risk 0.00cvss epss 0.00

    Cross-site request forgery vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a remote unauthenticated attacker to change the product settings.