exploitDog

GHSA-8v3j-hp54-rp54

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.8

Описание

Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082.

Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082.

Ссылки

EPSS

Процентиль: 24%

0.00082

Низкий

5.8 Medium

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2016-1321

CVSS3: 5.8

nvd

почти 10 лет назад

Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082.

EPSS

Процентиль: 24%

0.00082

Низкий

5.8 Medium

CVSS3

CVE ID

Дефекты

CWE-200