exploitDog

CVE-2020-10581

Опубликовано: 25 мар. 2021

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Multiple session validity check issues in several administration functionalities of Invigo Automatic Device Management (ADM) through 5.0 allow remote attackers to read potentially sensitive data hosted by the application.

Ссылки

https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf
Third Party Advisory
https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:invigo:automatic_device_management:*:*:*:*:*:*:*:*

Версия до 5.0 (включая)

EPSS

Процентиль: 52%

0.00292

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-668

Связанные уязвимости

GHSA-949j-7m8v-wg33

github

больше 3 лет назад

Multiple session validity check issues in several administration functionalities of Invigo Automatic Device Management (ADM) through 5.0 allow remote attackers to read potentially sensitive data hosted by the application.

EPSS

Процентиль: 52%

0.00292

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-668