exploitDog

CVE-2018-17766

Опубликовано: 09 сент. 2020

Источник: nvd

CVSS3: 4.6

CVSS2: 2.1

EPSS Низкий

Описание

Ingenico Telium 2 POS Telium2 OS allow bypass of file-reading restrictions via the NTPT3 protocol. This is fixed in Telium 2 SDK v9.32.03 patch N.

Ссылки

https://ingenico.us/smart-terminals/telium2
Product
https://www.ptsecurity.com/ww-en/analytics/threatscape/pt-2020-15/
Third Party Advisory
https://youtu.be/gtbS3Gr264w
Exploit
Third Party Advisory
https://youtu.be/oyUD7RDJsJs
Exploit
Third Party Advisory
https://ingenico.us/smart-terminals/telium2
Product
https://www.ptsecurity.com/ww-en/analytics/threatscape/pt-2020-15/
Third Party Advisory
https://youtu.be/gtbS3Gr264w
Exploit
Third Party Advisory
https://youtu.be/oyUD7RDJsJs
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:ingenico:telium_2_firmware:*:*:*:*:*:*:*:*

Версия до 9.32.03 (исключая)

cpe:2.3:h:ingenico:telium_2:-:*:*:*:*:*:*:*

EPSS

Процентиль: 25%

0.00084

Низкий

4.6 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-732

Связанные уязвимости

GHSA-q2x2-94fw-26xh

CVSS3: 4.6

github

больше 3 лет назад

Ingenico Telium 2 POS Telium2 OS allow bypass of file-reading restrictions via the NTPT3 protocol. This is fixed in Telium 2 SDK v9.32.03 patch N.

EPSS

Процентиль: 25%

0.00084

Низкий

4.6 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-732