Description
Accuenergy Acuvim II AXM-NET module containing multiple vulnerabilities has been detected: \n\n - The Accuenergy Acuvim AXM-NET Ethernet module contains an authentication bypass vulnerability which can be exploited remotely by accessing a specific web server URL. An attacker could modify the network settings of the AXM-NET module, but would not have access to the settings for the Acuvim II power meter. (CVE-2014-2373)\n\n - The Accuenergy Acuvim AXM-NET Ethernet module contains a password disclosure vulnerability related to JavaScript password validation. An authenticated attacker could modify the network settings of the AXM-NET module, but would not have access to the settings for the Acuvim II power meter. (CVE-2014-2374)
