exploitDog

CVE-2020-16280

Опубликовано: 20 авг. 2020

Источник: nvd

CVSS3: 5.5

CVSS2: 2.1

EPSS Низкий

Описание

Multiple Rangee GmbH RangeeOS 8.0.4 modules store credentials in plaintext including credentials of users for several external facing administrative services, domain joined users, and local administrators. To exploit the vulnerability a local attacker must have access to the underlying operating system.

Ссылки

https://www.contextis.com/en/resources/advisories/cve-2020-16280
Third Party Advisory
https://www.contextis.com/en/resources/advisories/cve-2020-16280
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:rangee:rangeeos:8.0.4:*:*:*:*:*:*:*

EPSS

Процентиль: 14%

0.00046

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-522

Связанные уязвимости

GHSA-7mcx-vf2q-9wm5

github

больше 3 лет назад

Multiple Rangee GmbH RangeeOS 8.0.4 modules store credentials in plaintext including credentials of users for several external facing administrative services, domain joined users, and local administrators. To exploit the vulnerability a local attacker must have access to the underlying operating system.

EPSS

Процентиль: 14%

0.00046

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-522