exploitDog

GHSA-975f-m9xw-7g52

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

goform/getWlanClientInfo in Orange AirBox Y858_FL_01.16_04 allows remote attackers to discover information about currently connected devices (hostnames, IP addresses, MAC addresses, and connection time) via the rand parameter.

goform/getWlanClientInfo in Orange AirBox Y858_FL_01.16_04 allows remote attackers to discover information about currently connected devices (hostnames, IP addresses, MAC addresses, and connection time) via the rand parameter.

Ссылки

EPSS

Процентиль: 56%

0.00333

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2018-18376

CVSS3: 7.5

nvd

больше 7 лет назад

goform/getWlanClientInfo in Orange AirBox Y858_FL_01.16_04 allows remote attackers to discover information about currently connected devices (hostnames, IP addresses, MAC addresses, and connection time) via the rand parameter.

EPSS

Процентиль: 56%

0.00333

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200