Описание
An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. When a backup file is created through the web interface, information on all users, including passwords, can be found in cleartext in the backup file. An attacker capable of accessing the web interface can create the backup file.
Ссылки
- ExploitMailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:svakom:svakom_siime_eye_firmware:14.1.00000001.3.330.0.0.3.14:*:*:*:*:*:*:*
cpe:2.3:h:svakom:svakom_siime_eye:-:*:*:*:*:*:*:*
EPSS
Процентиль: 5%
0.00023
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-312
Связанные уязвимости
CVSS3: 5.4
github
больше 1 года назад
An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. When a backup file is created through the web interface, information on all users, including passwords, can be found in cleartext in the backup file. An attacker capable of accessing the web interface can create the backup file.
EPSS
Процентиль: 5%
0.00023
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-312