exploitDog

GHSA-5v74-qfg6-c824

Опубликовано: 19 окт. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Asus RT-N12E 2.0.0.39 is affected by an incorrect access control vulnerability. Through system.asp / start_apply.htm, an attacker can change the administrator password without any authentication.

Asus RT-N12E 2.0.0.39 is affected by an incorrect access control vulnerability. Through system.asp / start_apply.htm, an attacker can change the administrator password without any authentication.

Ссылки

EPSS

Процентиль: 61%

0.00414

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-306

Связанные уязвимости

CVE-2020-23648

CVSS3: 7.5

nvd

больше 3 лет назад

Asus RT-N12E 2.0.0.39 is affected by an incorrect access control vulnerability. Through system.asp / start_apply.htm, an attacker can change the administrator password without any authentication.

EPSS

Процентиль: 61%

0.00414

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-306