Описание
An attacker could retrieve passwords from a HTTP GET request from the Kunbus PR100088 Modbus gateway versions prior to Release R02 (or Software Version 1.1.13166) if the attacker is in an MITM position.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 1.1.13166 (исключая)
Одновременно
cpe:2.3:o:kunbus:pr100088_modbus_gateway_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:kunbus:pr100088_modbus_gateway:-:*:*:*:*:*:*:*
EPSS
Процентиль: 47%
0.00239
Низкий
8.1 High
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-598
NVD-CWE-Other
Связанные уязвимости
CVSS3: 8.1
github
больше 3 лет назад
An attacker could retrieve passwords from a HTTP GET request from the Kunbus PR100088 Modbus gateway versions prior to Release R02 (or Software Version 1.1.13166) if the attacker is in an MITM position.
EPSS
Процентиль: 47%
0.00239
Низкий
8.1 High
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-598
NVD-CWE-Other