Описание
Circontrol CirCarLife all versions prior to 4.3.1, the PAP credentials of the device are stored in clear text in a log file that is accessible without authentication.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 4.3.1 (исключая)
Одновременно
cpe:2.3:o:circontrol:circarlife_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:circontrol:circarlife:-:*:*:*:*:*:*:*
EPSS
Процентиль: 45%
0.00229
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-522
CWE-532
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
Circontrol CirCarLife all versions prior to 4.3.1, the PAP credentials of the device are stored in clear text in a log file that is accessible without authentication.
EPSS
Процентиль: 45%
0.00229
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-522
CWE-532