Описание
BB-ESWGP506-2SFP-T versions 1.01.09 and prior is vulnerable due to the use of hard-coded credentials, which may allow an attacker to gain unauthorized access and permit the execution of arbitrary code on the BB-ESWGP506-2SFP-T (versions 1.01.01 and prior).
Ссылки
- MitigationThird Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- MitigationThird Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 1.01.09 (включая)
Одновременно
cpe:2.3:o:advantech:bb-eswgp506-2sfp-t_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:advantech:bb-eswgp506-2sfp-t:-:*:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.00596
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-798
CWE-798
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
BB-ESWGP506-2SFP-T versions 1.01.09 and prior is vulnerable due to the use of hard-coded credentials, which may allow an attacker to gain unauthorized access and permit the execution of arbitrary code on the BB-ESWGP506-2SFP-T (versions 1.01.01 and prior).
EPSS
Процентиль: 69%
0.00596
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-798
CWE-798