Описание
A broken access control vulnerability in the First_network_func function of spx_restservice allows an attacker to arbitrarily change the network configuration of the BMC. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
Ссылки
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:lannerinc:iac-ast2500a_firmware:1.10.0:*:*:*:*:*:*:*
cpe:2.3:h:lannerinc:iac-ast2500a:-:*:*:*:*:*:*:*
EPSS
Процентиль: 38%
0.00164
Низкий
6.5 Medium
CVSS3
5.3 Medium
CVSS3
Дефекты
CWE-284
NVD-CWE-Other
Связанные уязвимости
CVSS3: 5.3
github
больше 3 лет назад
A broken access control vulnerability in the First_network_func function of spx_restservice allows an attacker to arbitrarily change the network configuration of the BMC. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
EPSS
Процентиль: 38%
0.00164
Низкий
6.5 Medium
CVSS3
5.3 Medium
CVSS3
Дефекты
CWE-284
NVD-CWE-Other