Описание
Weak access controls in the Device Logout functionality on the TP-Link TL-SG108E v1.0.0 allow remote attackers to call the logout functionality, triggering a denial of service condition.
Ссылки
- ExploitMailing ListMitigationThird Party Advisory
- ExploitMailing ListMitigationThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:tp-link:tl-sg108e_firmware:1.0.0:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:tp-link:tl-sg108e:1.0:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:tl-sg108e:2.0:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:tl-sg108e:3.0:*:*:*:*:*:*:*
EPSS
Процентиль: 38%
0.00164
Низкий
6.5 Medium
CVSS3
2.7 Low
CVSS2
Дефекты
CWE-306
Связанные уязвимости
CVSS3: 6.5
github
больше 3 лет назад
Weak access controls in the Device Logout functionality on the TP-Link TL-SG108E v1.0.0 allow remote attackers to call the logout functionality, triggering a denial of service condition.
EPSS
Процентиль: 38%
0.00164
Низкий
6.5 Medium
CVSS3
2.7 Low
CVSS2
Дефекты
CWE-306