exploitDog

GHSA-gvxh-9x93-wmf5

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. An unauthenticated attacker is able to access files (that should have been restricted) via forceful browsing.

An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. An unauthenticated attacker is able to access files (that should have been restricted) via forceful browsing.

Ссылки

EPSS

Процентиль: 74%

0.00796

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-425

Связанные уязвимости

CVE-2020-35570

CVSS3: 5.3

nvd

почти 5 лет назад

An issue was discovered in MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual through 2.11.2. An unauthenticated attacker is able to access files (that should have been restricted) via forceful browsing.

EPSS

Процентиль: 74%

0.00796

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-425