CVE-2020-11642

Опубликовано: 15 окт. 2020

Источник: nvd

CVSS3: 7.7

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

The local file inclusion vulnerability present in B&R SiteManager versions <9.2.620236042 allows authenticated users to impact availability of SiteManager instances.

Ссылки

https://us-cert.cisa.gov/ics/advisories/icsa-20-273-03
Third Party Advisory
US Government Resource
https://www.br-automation.com/downloads_br_productcatalogue/assets/1600003183751-de-original-1.0.pdf
Vendor Advisory
https://us-cert.cisa.gov/ics/advisories/icsa-20-273-03
Third Party Advisory
US Government Resource
https://www.br-automation.com/downloads_br_productcatalogue/assets/1600003183751-de-original-1.0.pdf
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:br-automation:sitemanager:*:*:*:*:*:*:*:*

Версия до 9.2.620236042 (исключая)

EPSS

Процентиль: 54%

0.00308

Низкий

7.7 High

CVSS3

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-552

Связанные уязвимости

GHSA-6p3h-r2c5-ch3v

CVSS3: 6.5

github

больше 3 лет назад

The local file inclusion vulnerability present in B&R SiteManager versions <9.2.620236042 allows authenticated users to impact availability of SiteManager instances.

EPSS

Процентиль: 54%

0.00308

Низкий

7.7 High

CVSS3

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-552