exploitDog

GHSA-g9h7-j49h-62g4

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

The password-management administration component in Cisco Policy Suite (CPS) 7.0.1.3, 7.0.2, 7.0.2-att, 7.0.3-att, 7.0.4-att, and 7.5.0 allows remote attackers to bypass intended RBAC restrictions and read unspecified data via unknown vectors, aka Bug ID CSCut85211.

The password-management administration component in Cisco Policy Suite (CPS) 7.0.1.3, 7.0.2, 7.0.2-att, 7.0.3-att, 7.0.4-att, and 7.5.0 allows remote attackers to bypass intended RBAC restrictions and read unspecified data via unknown vectors, aka Bug ID CSCut85211.

Ссылки

EPSS

Процентиль: 38%

0.00169

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2016-1357

CVSS3: 5.3

nvd

почти 10 лет назад

The password-management administration component in Cisco Policy Suite (CPS) 7.0.1.3, 7.0.2, 7.0.2-att, 7.0.3-att, 7.0.4-att, and 7.5.0 allows remote attackers to bypass intended RBAC restrictions and read unspecified data via unknown vectors, aka Bug ID CSCut85211.

EPSS

Процентиль: 38%

0.00169

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-200