exploitDog

GHSA-q2cw-g3jx-6p84

Опубликовано: 02 мая 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.7

Описание

Cleartext Transmission in set-cookie:ecos_pw: Tenda N301 v6.0, Firmware v12.02.01.61_multi allows an authenticated attacker on the LAN or WLAN to intercept communications with the router and obtain the password.

Cleartext Transmission in set-cookie:ecos_pw: Tenda N301 v6.0, Firmware v12.02.01.61_multi allows an authenticated attacker on the LAN or WLAN to intercept communications with the router and obtain the password.

Ссылки

EPSS

Процентиль: 5%

0.0002

Низкий

5.7 Medium

CVSS3

CVE ID

Дефекты

CWE-319

Связанные уязвимости

CVE-2023-29680

CVSS3: 5.7

nvd

почти 3 года назад

Cleartext Transmission in set-cookie:ecos_pw: Tenda N301 v6.0, Firmware v12.02.01.61_multi allows an authenticated attacker on the LAN or WLAN to intercept communications with the router and obtain the password.

EPSS

Процентиль: 5%

0.0002

Низкий

5.7 Medium

CVSS3

CVE ID

Дефекты

CWE-319