exploitDog

CVE-2017-2125

Опубликовано: 28 апр. 2017

Источник: nvd

CVSS3: 8.8

CVSS2: 6.5

EPSS Низкий

Описание

Privilege escalation vulnerability in CentreCOM AR260S V2 remote authenticated attackers to gain privileges via the guest account.

Ссылки

http://jvn.jp/en/jp/JVN55121369/index.html
Mitigation
Third Party Advisory
VDB Entry
http://www.allied-telesis.co.jp/support/list/faq/vuls/20170330aen.html
Mitigation
Vendor Advisory
http://www.securityfocus.com/bid/97249
Third Party Advisory
VDB Entry
http://jvn.jp/en/jp/JVN55121369/index.html
Mitigation
Third Party Advisory
VDB Entry
http://www.allied-telesis.co.jp/support/list/faq/vuls/20170330aen.html
Mitigation
Vendor Advisory
http://www.securityfocus.com/bid/97249
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:allied_telesis_k.k.:centrecom_ar260s_v2_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:allied_telesis_k.k.:centrecom_ar260s_v2:-:*:*:*:*:*:*:*

EPSS

Процентиль: 82%

0.01785

Низкий

8.8 High

CVSS3

6.5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-r22m-g7h4-h52r

CVSS3: 8.8

github

больше 3 лет назад

Privilege escalation vulnerability in CentreCOM AR260S V2 remote authenticated attackers to gain privileges via the guest account.

EPSS

Процентиль: 82%

0.01785

Низкий

8.8 High

CVSS3

6.5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo