The Unauthenticated Remote Command Injection Vulnerability in Solar View Products

Researchers from the cyber security firm von check reported that a vulnerability in the solar power monitoring product Contact solar view can be exploited. Unauthenticated means you don't need a username and password anybody anybody can hit it What remote command injection means is you don't have to be on the network like or physically at the box You can just inject commands on it. certainly not a silver bullet But this is why we stack all of our controls together to make it harder The in solar view products can be exploited in attacks targeting organizations in the energy sector.

Play episode from 46:29

Transcript

The AI-powered Podcast Player

Save insights by tapping your headphones, chat with episodes, discover the best highlights - and more!

Get the app