Описание
Schrack Technik microControl with firmware before 1.7.0 (937) stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain access data for the ftp and telnet services via a direct request for ZTPUsrDtls.txt.
Ссылки
Уязвимые конфигурации
Конфигурация 1Версия до 1.7.0 (включая)
Одновременно
cpe:2.3:o:schrack:technik_microcontrol_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schrack:technik_microcontrol:-:*:*:*:*:*:*:*
EPSS
Процентиль: 77%
0.01072
Низкий
10 Critical
CVSS2
Дефекты
CWE-287
Связанные уязвимости
github
больше 3 лет назад
Schrack Technik microControl with firmware before 1.7.0 (937) stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain access data for the ftp and telnet services via a direct request for ZTPUsrDtls.txt.
EPSS
Процентиль: 77%
0.01072
Низкий
10 Critical
CVSS2
Дефекты
CWE-287