Описание
Sitepark Information Enterprise Server (IES) 2.9 before 2.9.6, when upgraded from an earlier version, does not properly restrict access, which allows remote attackers to change the manager account password and obtain sensitive information via a request to install/.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:sitepark:information_enterprise_server:2.9:*:*:*:*:*:*:*
EPSS
Процентиль: 67%
0.00548
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
Sitepark Information Enterprise Server (IES) 2.9 before 2.9.6, when upgraded from an earlier version, does not properly restrict access, which allows remote attackers to change the manager account password and obtain sensitive information via a request to install/.
EPSS
Процентиль: 67%
0.00548
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-264