exploitDog

GHSA-5wwr-75ff-wp92

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

POSIM EVO 15.13 for Windows includes an "Emergency Override" administrative account that may be accessed through POSIM's "override" feature. This Override prompt expects a code that is computed locally using a deterministic algorithm. This code may be generated by an attacker and used to bypass any POSIM EVO login prompt.

POSIM EVO 15.13 for Windows includes an "Emergency Override" administrative account that may be accessed through POSIM's "override" feature. This Override prompt expects a code that is computed locally using a deterministic algorithm. This code may be generated by an attacker and used to bypass any POSIM EVO login prompt.

Ссылки

EPSS

Процентиль: 18%

0.00057

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-330

Связанные уязвимости

CVE-2018-15807

CVSS3: 7.8

nvd

больше 7 лет назад

POSIM EVO 15.13 for Windows includes an "Emergency Override" administrative account that may be accessed through POSIM's "override" feature. This Override prompt expects a code that is computed locally using a deterministic algorithm. This code may be generated by an attacker and used to bypass any POSIM EVO login prompt.

EPSS

Процентиль: 18%

0.00057

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-330