Описание
An issue was discovered on SendQuick Entera and Avera devices before 2HF16. The application failed to check the access control of the request which could result in an attacker being able to shutdown the system.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryURL Repurposed
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryURL Repurposed
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:sendquick:entera_sms_gateway_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sendquick:entera_sms_gateway:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:sendquick:avera_sms_gateway_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sendquick:avera_sms_gateway:-:*:*:*:*:*:*:*
EPSS
Процентиль: 60%
0.00395
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-862
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
An issue was discovered on SendQuick Entera and Avera devices before 2HF16. The application failed to check the access control of the request which could result in an attacker being able to shutdown the system.
EPSS
Процентиль: 60%
0.00395
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-862