exploitDog

GHSA-2h35-xq9p-w64x

Опубликовано: 03 нояб. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of weak password requirements. A remote attacker with regular user privilege can easily infer the administrator password from system information after logging system, resulting in admin access and performing arbitrary system operations or disrupt service.

Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of weak password requirements. A remote attacker with regular user privilege can easily infer the administrator password from system information after logging system, resulting in admin access and performing arbitrary system operations or disrupt service.

Ссылки

EPSS

Процентиль: 50%

0.00269

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-521

Связанные уязвимости

CVE-2023-41353

CVSS3: 8.8

nvd

почти 2 года назад

Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of weak password requirements. A remote attacker with regular user privilege can easily infer the administrator password from system information after logging system, resulting in admin access and performing arbitrary system operations or disrupt service.

EPSS

Процентиль: 50%

0.00269

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-521