CVE-2022-29303: os command injection POC – Google Drive

Categories: Business Tags: solar Tags: monitoring Tags: service Tags: exposed Tags: web Tags: facing Tags: secure Tags: scan Tags: lockdown Tags: update We take a look at reports that 130,000 solar monitoring devices are sitting exposed online. (Read more...) The post Solar monitoring systems exposed: Secure your devices appeared first on Malwarebytes Labs.

Exposed and unpatched solar power monitoring systems have been exploited by both amateurs and professionals, including Mirai botnet hackers.

SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via conf_mail.php.