exploitDog

GHSA-2285-87m3-9c89

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

The version V6.01.03.01 of ZTE ZXCDN IAMWEB product is impacted by a configuration error vulnerability. An attacker could directly access the management portal in HTTP, resulting in users? information leakage.

The version V6.01.03.01 of ZTE ZXCDN IAMWEB product is impacted by a configuration error vulnerability. An attacker could directly access the management portal in HTTP, resulting in users? information leakage.

Ссылки

EPSS

Процентиль: 55%

0.00327

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2019-3428

CVSS3: 6.5

nvd

больше 5 лет назад

The version V6.01.03.01 of ZTE ZXCDN IAMWEB product is impacted by a configuration error vulnerability. An attacker could directly access the management portal in HTTP, resulting in users’ information leakage.

EPSS

Процентиль: 55%

0.00327

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-20