exploitDog

CVE-2018-16059

Опубликовано: 07 сент. 2018

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Средний

Описание

Endress+Hauser WirelessHART Fieldgate SWG70 3.x devices allow Directory Traversal via the fcgi-bin/wgsetcgi filename parameter.

Ссылки

http://www.securityfocus.com/bid/107416
https://cert.vde.com/en-us/advisories/vde-2019-002
https://ics-cert.us-cert.gov/advisories/ICSA-19-073-03
https://www.exploit-db.com/exploits/45342/
Exploit
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/107416
https://cert.vde.com/en-us/advisories/vde-2019-002
https://ics-cert.us-cert.gov/advisories/ICSA-19-073-03
https://www.exploit-db.com/exploits/45342/
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:endress:wirelesshart_fieldgate_swg70_firmware:3.00.07:*:*:*:*:*:*:*

cpe:2.3:h:endress:wirelesshart_fieldgate_swg70:-:*:*:*:*:*:*:*

EPSS

Процентиль: 97%

0.37052

Средний

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

GHSA-f7v2-j977-j9v3

CVSS3: 5.3

github

больше 3 лет назад

Endress+Hauser WirelessHART Fieldgate SWG70 3.x devices allow Directory Traversal via the fcgi-bin/wgsetcgi filename parameter.

EPSS

Процентиль: 97%

0.37052

Средний

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-22