exploitDog

GHSA-xhrm-c42h-gc35

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Anviz access control devices allow unverified password change which allows remote attackers to change the administrator password without prior authentication.

Anviz access control devices allow unverified password change which allows remote attackers to change the administrator password without prior authentication.

Ссылки

EPSS

Процентиль: 75%

0.00904

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-287

Связанные уязвимости

CVE-2019-12394

CVSS3: 9.8

nvd

около 6 лет назад

Anviz access control devices allow unverified password change which allows remote attackers to change the administrator password without prior authentication.

EPSS

Процентиль: 75%

0.00904

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-287