Vulnerability in Contec’s SolarView Products Poses Risk to Renewable Energy Stations
Renewable energy stations, particularly in Japan, are facing potential disruption due to a vulnerability in Contec’s SolarView products. The vulnerability, tracked as CVE-2022-29303, has been deemed critical and has the potential to enable hackers to exploit SolarView systems installed in thousands of locations.
Details of the Vulnerability:
Contec’s SolarView products, used for active monitoring of solar farms, have been installed in approximately 30,000 locations. The identified vulnerability allows for command injection via the conf_mail.php file in SolarView Compact ver.6.00. The severity of the vulnerability, with a score of 9.8 out of 10, highlights the significant risk it poses.