exploitDog

CVE-2019-5107

Опубликовано: 11 мар. 2020

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

A cleartext transmission vulnerability exists in the network communication functionality of WAGO e!Cockpit version 1.5.1.1. An attacker with access to network traffic can easily intercept, interpret, and manipulate data coming from, or destined for e!Cockpit. This includes passwords, configurations, and binaries being transferred to endpoints.

Ссылки

https://talosintelligence.com/vulnerability_reports/TALOS-2019-0899
Third Party Advisory
https://talosintelligence.com/vulnerability_reports/TALOS-2019-0899
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:wago:e\!cockpit:1.5.1.1:*:*:*:*:*:*:*

EPSS

Процентиль: 40%

0.00183

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-319

Связанные уязвимости

GHSA-x97q-g2hx-2vq7

github

больше 3 лет назад

A cleartext transmission vulnerability exists in the network communication functionality of WAGO e!Cockpit version 1.5.1.1. An attacker with access to network traffic can easily intercept, interpret, and manipulate data coming from, or destined for e!Cockpit. This includes passwords, configurations, and binaries being transferred to endpoints.

EPSS

Процентиль: 40%

0.00183

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-319