Описание
An issue was discovered on Bell HomeHub 3000 SG48222070 devices. Remote authenticated users can retrieve the serial number via cgi/json-req - this is an information leak because the serial number is intended to prove an actor's physical access to the device.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:bell:home_hub_3000_firmware:sg48222070:*:*:*:*:*:*:*
cpe:2.3:h:bell:home_hub_3000:-:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.00066
Низкий
4.3 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-200
Связанные уязвимости
CVSS3: 4.3
github
около 2 лет назад
An issue was discovered on Bell HomeHub 3000 SG48222070 devices. Remote authenticated users can retrieve the serial number via cgi/json-req - this is an information leak because the serial number is intended to prove an actor's physical access to the device.
EPSS
Процентиль: 21%
0.00066
Низкий
4.3 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-200