exploitDog

GHSA-vhx9-pxpc-mp7q

Опубликовано: 15 фев. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

4ipnet EAP-767 v3.42.00 is vulnerable to Incorrect Access Control. The device uses the same set of credentials, regardless of how many times a user logs in, the content of the cookie remains unchanged.

4ipnet EAP-767 v3.42.00 is vulnerable to Incorrect Access Control. The device uses the same set of credentials, regardless of how many times a user logs in, the content of the cookie remains unchanged.

Ссылки

EPSS

Процентиль: 37%

0.00159

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2024-24300

CVSS3: 9.8

nvd

почти 2 года назад

4ipnet EAP-767 v3.42.00 is vulnerable to Incorrect Access Control. The device uses the same set of credentials, regardless of how many times a user logs in, the content of the cookie remains unchanged.

EPSS

Процентиль: 37%

0.00159

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-284