Описание
Authentication Bypass by Spoofing vulnerability in ECOS System Management Appliance (aka SMA) 5.2.68 allows a man-in-the-middle attacker to compromise authentication keys and configurations via IP spoofing during "Easy Enrollment."
Ссылки
- MitigationThird Party Advisory
- MitigationThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:ecos:system_management_appliance:5.2.68:*:*:*:*:*:*:*
EPSS
Процентиль: 39%
0.00175
Низкий
7.4 High
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-290
Связанные уязвимости
CVSS3: 7.4
github
больше 3 лет назад
Authentication Bypass by Spoofing vulnerability in ECOS System Management Appliance (aka SMA) 5.2.68 allows a man-in-the-middle attacker to compromise authentication keys and configurations via IP spoofing during "Easy Enrollment."
EPSS
Процентиль: 39%
0.00175
Низкий
7.4 High
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-290