Описание
Improper implementation of Access Control in ABB Telephone Gateway TG/S 3.2 and Busch-Jaeger 6186/11 Telefon-Gateway allows an unauthorized user to access data marked as restricted, such as viewing or editing user profiles and application settings.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:abb:tg\/s3.2_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:tg\/s3.2:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:busch-jaeger:6186\/11_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:busch-jaeger:6186\/11:-:*:*:*:*:*:*:*
EPSS
Процентиль: 54%
0.00313
Низкий
9.1 Critical
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-264
NVD-CWE-Other
Связанные уязвимости
CVSS3: 9.1
github
больше 3 лет назад
Improper implementation of Access Control in ABB Telephone Gateway TG/S 3.2 and Busch-Jaeger 6186/11 Telefon-Gateway allows an unauthorized user to access data marked as restricted, such as viewing or editing user profiles and application settings.
EPSS
Процентиль: 54%
0.00313
Низкий
9.1 Critical
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-264
NVD-CWE-Other