Описание
The web interface on the LifeSize Room appliance LS_RM1_3.5.3 (11) allows remote attackers to bypass authentication via unspecified data associated with a "true" authentication status, related to AMF data and the LSRoom_Remoting.authenticate function in gateway.php.
Ссылки
- US Government Resource
- Exploit
- Exploit
- US Government Resource
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:a:lifesize:lifesize_room_appliance_software:ls_rm1_3.5.3:*:*:*:*:*:*:*
cpe:2.3:h:lifesize:lifesize_room_appliance:*:*:*:*:*:*:*:*
EPSS
Процентиль: 74%
0.00832
Низкий
5 Medium
CVSS2
Дефекты
CWE-287
Связанные уязвимости
github
больше 3 лет назад
The web interface on the LifeSize Room appliance LS_RM1_3.5.3 (11) allows remote attackers to bypass authentication via unspecified data associated with a "true" authentication status, related to AMF data and the LSRoom_Remoting.authenticate function in gateway.php.
EPSS
Процентиль: 74%
0.00832
Низкий
5 Medium
CVSS2
Дефекты
CWE-287