exploitDog

GHSA-xcg5-x6ph-w58q

Опубликовано: 01 окт. 2025

Источник: github

Github: Не прошло ревью

CVSS4: 7.7

CVSS3: 7.5

Описание

E3 Site Supervisor Control (firmware version < 2.31F01) RCI service contains an API call to read users info, which returns all usernames and password hashes for the application services.

E3 Site Supervisor Control (firmware version < 2.31F01) RCI service contains an API call to read users info, which returns all usernames and password hashes for the application services.

Ссылки

EPSS

Процентиль: 11%

0.00038

Низкий

7.7 High

CVSS4

7.5 High

CVSS3

CVE ID

Дефекты

CWE-522

Связанные уязвимости

CVE-2025-52545

CVSS3: 7.5

nvd

5 месяцев назад

E3 Site Supervisor Control (firmware version < 2.31F01) RCI service contains an API call to read users info, which returns all usernames and password hashes for the application services.

EPSS

Процентиль: 11%

0.00038

Низкий

7.7 High

CVSS4

7.5 High

CVSS3

CVE ID

Дефекты

CWE-522