Описание
Session fixation vulnerability in EasyBlocks IPv6 Ver. 2.0.1 and earlier, and Enterprise Ver. 2.0.1 and earlier allows remote attackers to impersonate a registered user and log in the management console, that may result in information alteration/disclosure via unspecified vectors.
Ссылки
- Third Party Advisory
- Release NotesVendor Advisory
- Release NotesVendor Advisory
- Third Party Advisory
- Release NotesVendor Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.0.1 (включая)
Одновременно
cpe:2.3:o:plathome:easyblocks_ipv6_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:plathome:easyblocks_ipv6:-:*:*:*:*:*:*:*
Конфигурация 2Версия до 2.0.1 (включая)
Одновременно
cpe:2.3:o:plathome:easyblocks_ipv6_enterprise_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:plathome:easyblocks_ipv6_enterprise:-:*:*:*:*:*:*:*
EPSS
Процентиль: 64%
0.00473
Низкий
8.1 High
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-384
Связанные уязвимости
github
больше 3 лет назад
Session fixation vulnerability in EasyBlocks IPv6 Ver. 2.0.1 and earlier, and Enterprise Ver. 2.0.1 and earlier allows remote attackers to impersonate a registered user and log in the management console, that may result in information alteration/disclosure via unspecified vectors.
EPSS
Процентиль: 64%
0.00473
Низкий
8.1 High
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-384