exploitDog

GHSA-m79c-6hcg-fj94

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

An issue was discovered in SolarWinds Serv-U before 15.2.2. Unauthenticated attackers can retrieve cleartext passwords via macro Injection. NOTE: this had a distinct fix relative to CVE-2020-35481.

An issue was discovered in SolarWinds Serv-U before 15.2.2. Unauthenticated attackers can retrieve cleartext passwords via macro Injection. NOTE: this had a distinct fix relative to CVE-2020-35481.

Ссылки

EPSS

Процентиль: 86%

0.02914

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-522

Связанные уязвимости

CVE-2021-3154

CVSS3: 7.5

nvd

почти 5 лет назад

An issue was discovered in SolarWinds Serv-U before 15.2.2. Unauthenticated attackers can retrieve cleartext passwords via macro Injection. NOTE: this had a distinct fix relative to CVE-2020-35481.

EPSS

Процентиль: 86%

0.02914

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-522