exploitDog

GHSA-f48x-hvc8-qr9c

Опубликовано: 26 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

A cleartext transmission of sensitive information vulnerability exists in the OAS Engine configuration communications functionality of Open Automation Software OAS Platform V16.00.0112. A targeted network sniffing attack can lead to a disclosure of sensitive information. An attacker can sniff network traffic to trigger this vulnerability.

A cleartext transmission of sensitive information vulnerability exists in the OAS Engine configuration communications functionality of Open Automation Software OAS Platform V16.00.0112. A targeted network sniffing attack can lead to a disclosure of sensitive information. An attacker can sniff network traffic to trigger this vulnerability.

Ссылки

EPSS

Процентиль: 37%

0.00156

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-319

Связанные уязвимости

CVE-2022-26077

CVSS3: 7.5

nvd

больше 3 лет назад

A cleartext transmission of sensitive information vulnerability exists in the OAS Engine configuration communications functionality of Open Automation Software OAS Platform V16.00.0112. A targeted network sniffing attack can lead to a disclosure of sensitive information. An attacker can sniff network traffic to trigger this vulnerability.

EPSS

Процентиль: 37%

0.00156

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-319