Описание
Symantec Industrial Control System Protection (ICSP), versions 6.x.x, may be susceptible to an unauthorized access issue that could potentially allow a threat actor to create or modify application user accounts without proper authentication.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 6.0.0 (включая) до 6.1.1.123 (исключая)
cpe:2.3:a:symantec:industrial_control_system_protection:*:*:*:*:*:*:*:*
EPSS
Процентиль: 24%
0.00082
Низкий
6.5 Medium
CVSS3
3.3 Low
CVSS2
Дефекты
CWE-287
Связанные уязвимости
github
больше 3 лет назад
Symantec Industrial Control System Protection (ICSP), versions 6.x.x, may be susceptible to an unauthorized access issue that could potentially allow a threat actor to create or modify application user accounts without proper authentication.
EPSS
Процентиль: 24%
0.00082
Низкий
6.5 Medium
CVSS3
3.3 Low
CVSS2
Дефекты
CWE-287