exploitDog

CVE-2020-7915

Опубликовано: 22 янв. 2020

Источник: nvd

CVSS3: 4.8

CVSS2: 3.5

EPSS Низкий

Описание

An issue was discovered on Eaton 5P 850 devices. The Ubicacion SAI field allows XSS attacks by an administrator.

Ссылки

https://sku11army.blogspot.com/2020/01/eaton-authenticated-stored-cross-site.html
Exploit
Third Party Advisory
https://sku11army.blogspot.com/2020/01/eaton-authenticated-stored-cross-site.html
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:eaton:5p_850_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:eaton:5p_850:-:*:*:*:*:*:*:*

EPSS

Процентиль: 55%

0.00323

Низкий

4.8 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-p3r5-5655-2pq8

github

больше 3 лет назад

An issue was discovered on Eaton 5P 850 devices. The Ubicacion SAI field allows XSS attacks by an administrator.

EPSS

Процентиль: 55%

0.00323

Низкий

4.8 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79