exploitDog

GHSA-r67f-7g4f-5cfq

Опубликовано: 14 мая 2024

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any unauthenticated client to disconnect any active user from the server. An attacker could use this vulnerability to prevent any user to perform actions in the system, causing a denial of service situation.

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any unauthenticated client to disconnect any active user from the server. An attacker could use this vulnerability to prevent any user to perform actions in the system, causing a denial of service situation.

Ссылки

EPSS

Процентиль: 62%

0.00428

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-306

Связанные уязвимости

CVE-2024-27942

CVSS3: 7.5

nvd

больше 1 года назад

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any unauthenticated client to disconnect any active user from the server. An attacker could use this vulnerability to prevent any user to perform actions in the system, causing a denial of service situation.

BDU:2024-05749

CVSS3: 7.5

fstec

больше 1 года назад

Уязвимость системы безопасного управления доступом к IED Siemens RUGGEDCOM CROSSBOW, связанная с отсутствием аутентификации для критически важной функции, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 62%

0.00428

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-306