exploitDog

CVE-2012-0236

Опубликовано: 21 фев. 2012

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Advantech/BroadWin WebAccess 7.0 and earlier allows remote attackers to obtain sensitive information via a direct request to a URL. NOTE: the vendor reportedly "does not consider it to be a security risk."

Ссылки

http://www.securityfocus.com/bid/52051
http://www.us-cert.gov/control_systems/pdf/ICSA-12-047-01.pdf
Patch
US Government Resource
http://www.securityfocus.com/bid/52051
http://www.us-cert.gov/control_systems/pdf/ICSA-12-047-01.pdf
Patch
US Government Resource

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:advantech:advantech_webaccess:*:*:*:*:*:*:*:*

Версия до 6.0 (включая)

cpe:2.3:a:advantech:advantech_webaccess:5.0:*:*:*:*:*:*:*

EPSS

Процентиль: 46%

0.00236

Низкий

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-58w7-x6qf-p87v

github

почти 4 года назад

Advantech/BroadWin WebAccess 7.0 and earlier allows remote attackers to obtain sensitive information via a direct request to a URL. NOTE: the vendor reportedly "does not consider it to be a security risk."

EPSS

Процентиль: 46%

0.00236

Низкий

5 Medium

CVSS2

Дефекты

CWE-200