CVE-2015-3949

Sinapsi eSolar Light <2.0.3970_schsl_2.2.85 - Info Disclosure

Title source: llm
STIX 2.1

Description

Sinapsi eSolar Light with firmware before 2.0.3970_schsl_2.2.85 allows attackers to discover cleartext passwords by reading the HTML source code of the mail-configuration page.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/75100
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-15-160-02

Scores

EPSS 0.0034
EPSS Percentile 26.5%

Details

CWE
CWE-200
Status published
Products (1)
sinapsi/esolar_light_firmware < 2.0.3970
Published Jun 13, 2015
Tracked Since Feb 18, 2026