exploitDog

GHSA-grcc-x5cc-59x5

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.1

Описание

Amazon Ring Doorbell before 3.4.7 mishandles encryption, which allows attackers to obtain audio and video data, or insert spoofed video that does not correspond to the actual person at the door.

Amazon Ring Doorbell before 3.4.7 mishandles encryption, which allows attackers to obtain audio and video data, or insert spoofed video that does not correspond to the actual person at the door.

Ссылки

EPSS

Процентиль: 23%

0.00077

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-327

Связанные уязвимости

CVE-2019-9483

CVSS3: 9.1

nvd

почти 7 лет назад

Amazon Ring Doorbell before 3.4.7 mishandles encryption, which allows attackers to obtain audio and video data, or insert spoofed video that does not correspond to the actual person at the door.

EPSS

Процентиль: 23%

0.00077

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-327