exploitDog

GHSA-m4qw-fm6j-8h62

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

In MIELE XGW 3000 ZigBee Gateway before 2.4.0, the Password Change Function does not require knowledge of the old password. This can be exploited in conjunction with CVE-2019-20480.

In MIELE XGW 3000 ZigBee Gateway before 2.4.0, the Password Change Function does not require knowledge of the old password. This can be exploited in conjunction with CVE-2019-20480.

Ссылки

EPSS

Процентиль: 52%

0.00294

Низкий

CVE ID

Связанные уязвимости

CVE-2019-20481

CVSS3: 9.8

nvd

почти 6 лет назад

In MIELE XGW 3000 ZigBee Gateway before 2.4.0, the Password Change Function does not require knowledge of the old password. This can be exploited in conjunction with CVE-2019-20480.

EPSS

Процентиль: 52%

0.00294

Низкий

CVE ID