exploitDog

GHSA-7m82-m7x6-rvmx

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.1

Описание

Environmental Systems Corporation (ESC) 8832 Data Controller 3.02 and earlier mishandles sessions, which allows remote attackers to bypass authentication and make arbitrary configuration changes via unspecified vectors.

Environmental Systems Corporation (ESC) 8832 Data Controller 3.02 and earlier mishandles sessions, which allows remote attackers to bypass authentication and make arbitrary configuration changes via unspecified vectors.

Ссылки

EPSS

Процентиль: 56%

0.00337

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2016-4501

CVSS3: 9.1

nvd

больше 9 лет назад

Environmental Systems Corporation (ESC) 8832 Data Controller 3.02 and earlier mishandles sessions, which allows remote attackers to bypass authentication and make arbitrary configuration changes via unspecified vectors.

EPSS

Процентиль: 56%

0.00337

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-284