Описание
Directory traversal vulnerability in the NC854 and NC856 modules for IDS RTU 850C devices allows remote authenticated users to read arbitrary files via unspecified vectors involving an internal web server, as demonstrated by reading a TELNET credentials file.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:a:ids:nc854:-:*:*:*:*:*:*:*
cpe:2.3:a:ids:nc856:-:*:*:*:*:*:*:*
cpe:2.3:h:ids:ids_rtu_850c:*:*:*:*:*:*:*:*
EPSS
Процентиль: 55%
0.0032
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
больше 3 лет назад
Directory traversal vulnerability in the NC854 and NC856 modules for IDS RTU 850C devices allows remote authenticated users to read arbitrary files via unspecified vectors involving an internal web server, as demonstrated by reading a TELNET credentials file.
EPSS
Процентиль: 55%
0.0032
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-22