exploitDog

GHSA-6xpf-fqmv-9f57

Опубликовано: 22 янв. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

Fresenius Kabi Agilia Link + version 3.0 has a default configuration page accessible without authentication. An attacker may use this functionality to change the exposed configuration values such as network settings.

Fresenius Kabi Agilia Link + version 3.0 has a default configuration page accessible without authentication. An attacker may use this functionality to change the exposed configuration values such as network settings.

Ссылки

EPSS

Процентиль: 42%

0.00197

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-287

CWE-306

Связанные уязвимости

CVE-2021-33843

CVSS3: 5.3

nvd

около 4 лет назад

Fresenius Kabi Agilia SP MC WiFi vD25 and prior has a default configuration page accessible without authentication. An attacker may use this functionality to change the exposed configuration values such as network settings.

EPSS

Процентиль: 42%

0.00197

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-287

CWE-306