exploitDog

GHSA-7gjf-ch6v-37rf

Опубликовано: 25 июн. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Axiros AXESS Auto Configuration Server (ACS) 4.x and 5.0.0 has Incorrect Access Control. An authorization bypass allows remote attackers to achieve unauthenticated remote code execution.

Axiros AXESS Auto Configuration Server (ACS) 4.x and 5.0.0 has Incorrect Access Control. An authorization bypass allows remote attackers to achieve unauthenticated remote code execution.

Ссылки

EPSS

Процентиль: 52%

0.0029

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2024-33898

CVSS3: 9.8

nvd

больше 1 года назад

Axiros AXESS Auto Configuration Server (ACS) 4.x and 5.0.0 is affected by an Incorrect Access Control vulnerability. An authorization bypass allows remote attackers to achieve unauthenticated remote code execution.

EPSS

Процентиль: 52%

0.0029

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-284