exploitDog

GHSA-p8xc-w865-2hhr

Опубликовано: 23 апр. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 8.1

Описание

BYD QIN PLUS DM-i Dilink OS v3.0_13.1.7.2204050.1 to v3.0_13.1.7.2312290.1_0 was discovered to cend broadcasts to the manufacturer's cloud server unencrypted, allowing attackers to execute a man-in-the-middle attack.

BYD QIN PLUS DM-i Dilink OS v3.0_13.1.7.2204050.1 to v3.0_13.1.7.2312290.1_0 was discovered to cend broadcasts to the manufacturer's cloud server unencrypted, allowing attackers to execute a man-in-the-middle attack.

Ссылки

EPSS

Процентиль: 17%

0.00055

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-295

Связанные уязвимости

CVE-2025-28169

CVSS3: 8.1

nvd

10 месяцев назад

BYD QIN PLUS DM-i Dilink OS v3.0_13.1.7.2204050.1 to v3.0_13.1.7.2312290.1_0 was discovered to cend broadcasts to the manufacturer's cloud server unencrypted, allowing attackers to execute a man-in-the-middle attack.

EPSS

Процентиль: 17%

0.00055

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-295