exploitDog

CVE-2019-6451

Опубликовано: 06 июн. 2019

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

On SOYAL AR-727H and AR-829Ev5 devices, all CGI programs allow unauthenticated POST access.

Ссылки

http://www.nccst.nat.gov.tw
Broken Link
Third Party Advisory
http://www.soyal.com/epaper/e-paper-en-117.html
Broken Link
https://github.com/cvereveal/CVEs/tree/master/CVE-2019-6451
Exploit
Third Party Advisory
https://www.soyal.com.tw/cve-2019-6451/
Vendor Advisory
https://www.soyal.com/exhibition/cve-2019-6451/
Broken Link
http://www.nccst.nat.gov.tw
Broken Link
Third Party Advisory
http://www.soyal.com/epaper/e-paper-en-117.html
Broken Link
https://github.com/cvereveal/CVEs/tree/master/CVE-2019-6451
Exploit
Third Party Advisory
https://www.soyal.com.tw/cve-2019-6451/
Vendor Advisory
https://www.soyal.com/exhibition/cve-2019-6451/
Broken Link

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:soyal:ar-727h_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:soyal:ar-727h:-:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

cpe:2.3:o:soyal:ar-829ev5_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:soyal:ar-829ev5:-:*:*:*:*:*:*:*

EPSS

Процентиль: 53%

0.00307

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-306

Связанные уязвимости

GHSA-9jf8-3qw3-7c5j

CVSS3: 7.5

github

больше 3 лет назад

On SOYAL AR-727H and AR-829Ev5 devices, all CGI programs allow unauthenticated POST access.

EPSS

Процентиль: 53%

0.00307

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-306