Ak Sm 800A Firmware

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:o:danfoss:ak-sm_800a_firmware:*:*:*:*:*:*:*:*

part: o version: * update: *

VendorDanfoss (4a381c1e-2f85-5f8c-b4e6-c3ced60eda9c)
ProductAk Sm 800A Firmware (95b246ae-66d6-5ed6-929d-29fd551f4ec2)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-25915 vulnerable 2026-06-08 05:56:10.765953 Authenticated Remote Command Execution in Danfoss AK-SM800A
CRITICAL (9.9)
Due to improper input validation, an authenticated remote attacker could execute arbitrary commands on the target system.
Published: 2023-08-21T20:30:02.375Z
Updated: 2025-01-09T07:56:40.947Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-25914 vulnerable 2026-06-08 05:56:10.764085 Authneticated Path Traversal in Danfoss AK-SM800A
HIGH (8.8)
Due to improper restriction, authenticated attackers could retrieve and read system files of the underlying server through the XML interface. The information that can be read can lead to a full system compromise.
Published: 2023-08-21T20:30:03.122Z
Updated: 2025-07-19T05:15:44.063Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-25913 vulnerable 2026-06-08 05:56:10.762812 Authentication Bypass in Danfoss AK-SM800A
HIGH (7.5)
Because of an authentication flaw an attacker would be capable of generating a web report that discloses sensitive information such as internal IP addresses, usernames, store names and other sensitive information.
Published: 2023-08-21T20:30:03.854Z
Updated: 2025-01-09T07:56:41.147Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.