CVE-2014-2373

AXN-NET Ethernet module accessory 3.04 - Info Disclosure

Title source: llm

Description

The AXN-NET Ethernet module accessory 3.04 for the Accuenergy Acuvim II allows remote attackers to discover passwords and modify settings via vectors involving JavaScript.

References (3)

[Patch, Vendor Advisory] http://www.accuenergy.com/firmware-update-axm-net

[Third Party Advisory, US Government Resource] https://ics-cert.us-cert.gov/advisories/ICSA-14-275-02

[Third Party Advisory, US Government Resource] https://www.cisa.gov/news-events/ics-advisories/icsa-14-275-02

Scores

EPSS 0.0060

EPSS Percentile 69.3%

Classification

CWE

CWE-287 CWE-602

Status draft

Affected Products (2)

accuenergy/axm-net

accuenergy/acuvim_ii

Timeline

Published Nov 05, 2014

Tracked Since Feb 18, 2026