exploitDog

GHSA-cr3p-h54g-qj4w

Опубликовано: 20 фев. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Yealink Config Encrypt Tool add RSA before 1.2 has a built-in RSA key pair, and thus there is a risk of decryption by an adversary.

Yealink Config Encrypt Tool add RSA before 1.2 has a built-in RSA key pair, and thus there is a risk of decryption by an adversary.

Ссылки

EPSS

Процентиль: 40%

0.00177

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-321

Связанные уязвимости

CVE-2022-48625

CVSS3: 7.5

nvd

почти 2 года назад

Yealink Config Encrypt Tool add RSA before 1.2 has a built-in RSA key pair, and thus there is a risk of decryption by an adversary.

EPSS

Процентиль: 40%

0.00177

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-321