exploitDog

GHSA-q7q2-jrfc-2v89

Опубликовано: 04 мая 2022

Источник: github

Github: Не прошло ревью

Описание

uaddUpAdmin.asp in Advantech/BroadWin WebAccess before 7.0 does not properly perform authentication, which allows remote attackers to modify an administrative password via a password-change request.

uaddUpAdmin.asp in Advantech/BroadWin WebAccess before 7.0 does not properly perform authentication, which allows remote attackers to modify an administrative password via a password-change request.

Ссылки

EPSS

Процентиль: 39%

0.00175

Низкий

CVE ID

Дефекты

CWE-287

Связанные уязвимости

CVE-2012-0239

nvd

почти 14 лет назад

uaddUpAdmin.asp in Advantech/BroadWin WebAccess before 7.0 does not properly perform authentication, which allows remote attackers to modify an administrative password via a password-change request.

EPSS

Процентиль: 39%

0.00175

Низкий

CVE ID

Дефекты

CWE-287