exploitDog

GHSA-7wpp-wf5g-89wp

Опубликовано: 01 июл. 2025

Источник: github

Github: Не прошло ревью

CVSS4: 6.9

CVSS3: 7.5

Описание

The Contec Co.,Ltd. CONPROSYS HMI System (CHS) exposes a PHP phpinfo() debug page to unauthenticated users that may contain sensitive data useful for an attacker.This issue affects CONPROSYS HMI System (CHS): before 3.7.7.

The Contec Co.,Ltd. CONPROSYS HMI System (CHS) exposes a PHP phpinfo() debug page to unauthenticated users that may contain sensitive data useful for an attacker.This issue affects CONPROSYS HMI System (CHS): before 3.7.7.

Ссылки

EPSS

Процентиль: 24%

0.00082

Низкий

6.9 Medium

CVSS4

7.5 High

CVSS3

CVE ID

Дефекты

CWE-215

Связанные уязвимости

CVE-2025-34081

CVSS3: 7.5

nvd

7 месяцев назад

The Contec Co.,Ltd. CONPROSYS HMI System (CHS) exposes a PHP phpinfo() debug page to unauthenticated users that may contain sensitive data useful for an attacker.This issue affects CONPROSYS HMI System (CHS): before 3.7.7.

EPSS

Процентиль: 24%

0.00082

Низкий

6.9 Medium

CVSS4

7.5 High

CVSS3

CVE ID

Дефекты

CWE-215