exploitDog

GHSA-3r85-3gpw-c7mc

Опубликовано: 16 апр. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

An issue in upload.csp of FANTEC GmbH MWiD25-DS Firmware v2.000.030 allows attackers to write files and reset the user passwords without having a valid session cookie.

An issue in upload.csp of FANTEC GmbH MWiD25-DS Firmware v2.000.030 allows attackers to write files and reset the user passwords without having a valid session cookie.

Ссылки

EPSS

Процентиль: 92%

0.08782

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-565

Связанные уязвимости

CVE-2022-28113

CVSS3: 7.2

nvd

почти 4 года назад

An issue in upload.csp of FANTEC GmbH MWiD25-DS Firmware v2.000.030 allows attackers to write files and reset the user passwords without having a valid session cookie.

EPSS

Процентиль: 92%

0.08782

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-565