exploitDog

CVE-2007-6098

Опубликовано: 22 нояб. 2007

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Ingate Firewall before 4.6.0 and SIParator before 4.6.0 do not log truncated (1) ICMP, (2) UDP, and (3) TCP packets, which has unknown impact and remote attack vectors; and do not log (4) serial-console login attempts with nonexistent usernames, which might make it easier for attackers with physical access to guess valid login credentials while avoiding detection.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:h:ingate:ingate_firewall:*:*:*:*:*:*:*:*

Версия до 4.5.2 (включая)

cpe:2.3:h:ingate:ingate_siparator:*:*:*:*:*:*:*:*

Версия до 4.5.2 (включая)

EPSS

Процентиль: 55%

0.00323

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-gwvg-fqv9-jc46

github

почти 4 года назад

Ingate Firewall before 4.6.0 and SIParator before 4.6.0 do not log truncated (1) ICMP, (2) UDP, and (3) TCP packets, which has unknown impact and remote attack vectors; and do not log (4) serial-console login attempts with nonexistent usernames, which might make it easier for attackers with physical access to guess valid login credentials while avoiding detection.

EPSS

Процентиль: 55%

0.00323

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other