Описание
An issue was discovered on V-Zug Combi-Steam MSLQ devices before Ethernet R07 and before WLAN R05. There is no bruteforce protection (e.g., lockout) established. An attacker might be able to bruteforce the password to authenticate on the device.
Ссылки
- Permissions RequiredThird Party Advisory
- Permissions RequiredThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до ethernet_r07 (исключая)
Одновременно
cpe:2.3:o:vzug:combi-stream_mslq_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:vzug:combi-stream_mslq:-:*:*:*:*:*:*:*
Конфигурация 2Версия до wlan_r05 (исключая)
Одновременно
cpe:2.3:o:vzug:combi-stream_mslq_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:vzug:combi-stream_mslq:-:*:*:*:*:*:*:*
EPSS
Процентиль: 54%
0.0031
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-307
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
An issue was discovered on V-Zug Combi-Steam MSLQ devices before Ethernet R07 and before WLAN R05. There is no bruteforce protection (e.g., lockout) established. An attacker might be able to bruteforce the password to authenticate on the device.
EPSS
Процентиль: 54%
0.0031
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-307