Описание
An Improper Input Validation issue was discovered in ABB FOX515T release 1.0. An improper input validation vulnerability has been identified, allowing a local attacker to provide a malicious parameter to the script that is not validated by the application, This could enable the attacker to retrieve any file on the server.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:hitachienergy:fox515t_firmware:1.0:*:*:*:*:*:*:*
cpe:2.3:h:hitachienergy:fox515t:-:*:*:*:*:*:*:*
EPSS
Процентиль: 44%
0.00213
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-20
CWE-20
Связанные уязвимости
CVSS3: 5.5
github
больше 3 лет назад
An Improper Input Validation issue was discovered in ABB FOX515T release 1.0. An improper input validation vulnerability has been identified, allowing a local attacker to provide a malicious parameter to the script that is not validated by the application, This could enable the attacker to retrieve any file on the server.
EPSS
Процентиль: 44%
0.00213
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-20
CWE-20