exploitDog

GHSA-4gjv-h382-mm78

Опубликовано: 19 нояб. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

An issue was discovered in bridgetech VB288 Objective QoE Content Extractor, firmware version 5.6.0-8, allowing attackers to gain sensitive information such as administrator passwords via the /probe/core/setup/passwd endpoint.

An issue was discovered in bridgetech VB288 Objective QoE Content Extractor, firmware version 5.6.0-8, allowing attackers to gain sensitive information such as administrator passwords via the /probe/core/setup/passwd endpoint.

Ссылки

EPSS

Процентиль: 4%

0.00019

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-312

Связанные уязвимости

CVE-2025-63208

CVSS3: 7.5

nvd

3 месяца назад

An issue was discovered in bridgetech VB288 Objective QoE Content Extractor, firmware version 5.6.0-8, allowing attackers to gain sensitive information such as administrator passwords via the /probe/core/setup/passwd endpoint.

EPSS

Процентиль: 4%

0.00019

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-312