CVE-2017-12127

Опубликовано: 14 мая 2018

Источник: nvd

CVSS3: 4.4

CVSS2: 2.1

EPSS Низкий

Описание

A password storage vulnerability exists in the operating system functionality of Moxa EDR-810 V4.1 build 17030317. An attacker with shell access could extract passwords in clear text from the device.

Ссылки

https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0479
Exploit
Third Party Advisory
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0479
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:moxa:edr-810_firmware:4.1:*:*:*:*:*:*:*

cpe:2.3:h:moxa:edr-810:-:*:*:*:*:*:*:*

EPSS

Процентиль: 32%

0.00121

Низкий

4.4 Medium

CVSS3

4.4 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-522

Связанные уязвимости

GHSA-xq97-wjxv-m4j7

CVSS3: 6.7

github

больше 3 лет назад

A password storage vulnerability exists in the operating system functionality of Moxa EDR-810 V4.1 build 17030317. An attacker with shell access could extract passwords in clear text from the device.

EPSS

Процентиль: 32%

0.00121

Низкий

4.4 Medium

CVSS3

4.4 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-522