CVE-2014-125030

Опубликовано: 01 янв. 2023

Источник: nvd

CVSS3: 6.3

CVSS3: 9.8

CVSS2: 5.8

EPSS Низкий

Описание

A vulnerability, which was classified as critical, has been found in taoeffect Empress. Affected by this issue is some unknown functionality. The manipulation leads to use of hard-coded password. The patch is identified as 557e177d8a309d6f0f26de46efb38d43e000852d. It is recommended to apply a patch to fix this issue. VDB-217154 is the identifier assigned to this vulnerability.

Ссылки

https://github.com/taoeffect/empress/commit/557e177d8a309d6f0f26de46efb38d43e000852d
Patch
Third Party Advisory
https://github.com/taoeffect/empress/pull/61
Third Party Advisory
https://vuldb.com/?ctiid.217154
Third Party Advisory
https://vuldb.com/?id.217154
Permissions Required
Third Party Advisory
https://github.com/taoeffect/empress/commit/557e177d8a309d6f0f26de46efb38d43e000852d
Patch
Third Party Advisory
https://github.com/taoeffect/empress/pull/61
Third Party Advisory
https://vuldb.com/?ctiid.217154
Third Party Advisory
https://vuldb.com/?id.217154
Permissions Required
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:empress_project:empress:*:*:*:*:*:*:*:*

Версия до 2014-12-02 (исключая)

EPSS

Процентиль: 65%

0.00503

Низкий

6.3 Medium

CVSS3

9.8 Critical

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-259

CWE-798

Связанные уязвимости

GHSA-hxh3-588w-hvmj

CVSS3: 9.8

github

около 3 лет назад

A vulnerability, which was classified as critical, has been found in taoeffect Empress. Affected by this issue is some unknown functionality. The manipulation leads to use of hard-coded password. The name of the patch is 557e177d8a309d6f0f26de46efb38d43e000852d. It is recommended to apply a patch to fix this issue. VDB-217154 is the identifier assigned to this vulnerability.

EPSS

Процентиль: 65%

0.00503

Низкий

6.3 Medium

CVSS3

9.8 Critical

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-259

CWE-798