📦 Polyeco300 Firmware

Sielco PolyEco1000 devices have an authentication bypass vulnerability where attackers can modify passwords in POST requests to gain administrative access. This affects all organizations using vulnera...

CVE-2023-5754 allows attackers to gain full administrative control of Sielco PolyEco1000 systems by exploiting weak default credentials through remote password attacks. This affects all PolyEco1000 sy...

CVE-2023-46664 is an improper access control vulnerability in Sielco PolyEco1000 that allows attackers to bypass authorization by manipulating user-supplied input to access protected resources. This a...

Sielco PolyEco1000 devices have a session hijack vulnerability where attackers can brute-force session cookies and intercept unencrypted sessions. This allows unauthorized access to industrial control...

Sielco PolyEco1000 devices have an information disclosure vulnerability where unauthenticated remote attackers can access sensitive information via specially crafted requests. This affects all systems...