exploitDog

CVE-2018-15655

Опубликовано: 05 фев. 2019

Источник: nvd

CVSS3: 6.5

CVSS2: 4.3

EPSS Низкий

Описание

An issue was discovered in 42Gears SureMDM before 2018-11-27, related to CORS settings. Cross-origin access is possible.

Ссылки

https://research.digitalinterruption.com/2019/01/31/multiple-vulnerabilities-found-in-mobile-device-management-software/
Exploit
Third Party Advisory
https://research.digitalinterruption.com/2019/01/31/multiple-vulnerabilities-found-in-mobile-device-management-software/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:42gears:suremdm:*:*:*:*:*:*:*:*

Версия до 6.35 (исключая)

EPSS

Процентиль: 56%

0.00334

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-2q77-h8cx-pwj5

CVSS3: 6.5

github

больше 3 лет назад

An issue was discovered in 42Gears SureMDM before 2018-11-27, related to CORS settings. Cross-origin access is possible.

EPSS

Процентиль: 56%

0.00334

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-200