Описание
Insufficiently Protected Credentials vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior that could cause unauthorized access of when credentials are discovered after a brute force attack.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.6.0 (включая)
Одновременно
cpe:2.3:o:schneider-electric:spacelynk_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:spacelynk:-:*:*:*:*:*:*:*
Конфигурация 2Версия до 2.6.0 (включая)
Одновременно
cpe:2.3:o:schneider-electric:homelynk_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:homelynk:-:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00304
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-307
CWE-307
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
Insufficiently Protected Credentials vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior that could cause unauthorized access of when credentials are discovered after a brute force attack.
EPSS
Процентиль: 53%
0.00304
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-307
CWE-307