exploitDog

CVE-2016-5786

Опубликовано: 13 фев. 2017

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

An issue was discovered in OmniMetrix OmniView, Version 1.2. The OmniView web application transmits credentials with the HTTP protocol, which could be sniffed by an attacker that may result in the compromise of account credentials.

Ссылки

http://www.securityfocus.com/bid/94937
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-16-350-02
Mitigation
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/94937
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-16-350-02
Mitigation
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:omnimetrix:omniview:1.2:*:*:*:*:*:*:*

EPSS

Процентиль: 63%

0.00457

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-8fx2-2j9c-7g3v

CVSS3: 7.5

github

больше 3 лет назад

An issue was discovered in OmniMetrix OmniView, Version 1.2. The OmniView web application transmits credentials with the HTTP protocol, which could be sniffed by an attacker that may result in the compromise of account credentials.

EPSS

Процентиль: 63%

0.00457

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200