Описание
A broken access control vulnerability in Smart Battery A4, a multifunctional portable charger, firmware version ?<= r1.7.9 allows an attacker to get/reset administrator’s password without any authentication.
Ссылки
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до r1.7.9 (включая)
Одновременно
cpe:2.3:o:gigastone:smart_battery_a4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:gigastone:smart_battery_a4:-:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00305
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-284
CWE-306
Связанные уязвимости
github
больше 3 лет назад
A broken access control vulnerability in Smart Battery A4, a multifunctional portable charger, firmware version ?<= r1.7.9 allows an attacker to get/reset administrator’s password without any authentication.
EPSS
Процентиль: 53%
0.00305
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-284
CWE-306