Описание
Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC communication does not include any credentials. This allows an attacker with network access to directly communicate with SoftPAC, including, for example, stopping the service remotely.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 9.6 (включая)
cpe:2.3:a:opto22:softpac_project:*:*:*:*:*:*:*:*
EPSS
Процентиль: 51%
0.0028
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-285
CWE-862
Связанные уязвимости
github
больше 3 лет назад
Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC communication does not include any credentials. This allows an attacker with network access to directly communicate with SoftPAC, including, for example, stopping the service remotely.
EPSS
Процентиль: 51%
0.0028
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-285
CWE-862