exploitDog

GHSA-g459-4fqq-mr69

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT, ES8510-XT, ES9528-XTv2, ES7506, ES7510, ES7528, ES8508, ES8508F, ES8510, ES8510-XTE, ES9528/ES9528-XT (all versions) allows unauthenticated device administration.

Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT, ES8510-XT, ES9528-XTv2, ES7506, ES7510, ES7528, ES8508, ES8508F, ES8510, ES8510-XTE, ES9528/ES9528-XT (all versions) allows unauthenticated device administration.

Ссылки

EPSS

Процентиль: 74%

0.00796

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-285

CWE-306

CWE-863

Связанные уязвимости

CVE-2020-12500

CVSS3: 9.8

nvd

больше 5 лет назад

Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT, ES8510-XT, ES9528-XTv2, ES7506, ES7510, ES7528, ES8508, ES8508F, ES8510, ES8510-XTE, ES9528/ES9528-XT (all versions) allows unauthenticated device administration.

EPSS

Процентиль: 74%

0.00796

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-285

CWE-306

CWE-863