id: eko-software-update-panel info: name: Eko Software Update Panel - Detect author: clem9669 severity: info description: Eko software update panel for embedded systems was detected. An attacker can possibly upload a software image or restart the system. reference: - https://ekoenergetyka.com.pl/software-solutions/ classification: cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N cvss-score: 0.0 cwe-id: CWE-200 metadata: max-request: 1 shodan-query: http.title:"Ekoenergetyka-Polska Sp. z o.o - CCU3 Software Update for Embedded Systems" google-query: intitle:"Ekoenergetyka-Polska Sp. z o.o - CCU3 Software Update for Embedded Systems" tags: panel,eko http: - method: GET path: - '{{BaseURL}}' matchers-condition: and matchers: - type: word part: body words: - "Ekoenergetyka-Polska Sp. z o.o - CCU3 Software Update for Embedded Systems" - type: status status: - 200 # Enhanced by md on 2022/11/14