CVE-2012-5864

CVE-2012-5864: Sinapsi eSolar Improper Authentication

Vendor Sinapsi
Product eSolar
Weakness CWE-287 · Improper authentication
Published November 23, 2012
Last update July 8, 2025

CVSS base score

What the vulnerability does

01Description

These Sinapsi devices do not check if users that visit pages within the device have properly authenticated. By directly visiting the pages within the device, attackers can gain unauthorized access with administrative privileges.

Key dates

02Disclosure timeline

November 23, 2012 CVE published
July 8, 2025 Record updated