exploitDog

GHSA-4m6w-3vgj-rpj9

Опубликовано: 02 мая 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.7

Описание

Cleartext Transmission in cookie:ecos_pw: in Tenda N301 v6.0, firmware v12.03.01.06_pt allows an authenticated attacker on the LAN or WLAN to intercept communications with the router and obtain the password.

Cleartext Transmission in cookie:ecos_pw: in Tenda N301 v6.0, firmware v12.03.01.06_pt allows an authenticated attacker on the LAN or WLAN to intercept communications with the router and obtain the password.

Ссылки

EPSS

Процентиль: 5%

0.0002

Низкий

5.7 Medium

CVSS3

CVE ID

Дефекты

CWE-319

Связанные уязвимости

CVE-2023-29681

CVSS3: 5.7

nvd

почти 3 года назад

Cleartext Transmission in cookie:ecos_pw: in Tenda N301 v6.0, firmware v12.03.01.06_pt allows an authenticated attacker on the LAN or WLAN to intercept communications with the router and obtain the password.

EPSS

Процентиль: 5%

0.0002

Низкий

5.7 Medium

CVSS3

CVE ID

Дефекты

CWE-319