exploitDog

GHSA-jpq2-x8c2-4hxg

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

All versions up to V4.01.01.02 of ZTE ZXCLOUD GoldenData VAP product have encryption problems vulnerability. Attackers could sniff unencrypted account and password through the network for front-end system access.

All versions up to V4.01.01.02 of ZTE ZXCLOUD GoldenData VAP product have encryption problems vulnerability. Attackers could sniff unencrypted account and password through the network for front-end system access.

Ссылки

EPSS

Процентиль: 22%

0.00071

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-311

CWE-522

Связанные уязвимости

CVE-2019-3431

CVSS3: 9.8

nvd

около 6 лет назад

All versions up to V4.01.01.02 of ZTE ZXCLOUD GoldenData VAP product have encryption problems vulnerability. Attackers could sniff unencrypted account and password through the network for front-end system access.

EPSS

Процентиль: 22%

0.00071

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-311

CWE-522