exploitDog

CVE-2021-26824

Опубликовано: 26 июл. 2021

Источник: nvd

CVSS3: 7.1

CVSS2: 5.6

EPSS Низкий

Описание

DM FingerTool v1.19 in the DM PD065 Secure USB is susceptible to improper authentication by a replay attack, allowing local attackers to bypass user authentication and access all features and data on the USB.

Ссылки

https://github.com/bosslabdcu/Vulnerability-Reporting/security/advisories/GHSA-xvrv-w76r-gh28
Exploit
Third Party Advisory
https://sites.google.com/view/boss-lab
Third Party Advisory
https://github.com/bosslabdcu/Vulnerability-Reporting/security/advisories/GHSA-xvrv-w76r-gh28
Exploit
Third Party Advisory
https://sites.google.com/view/boss-lab
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dm_fingertool_project:dm_fingertool:1.19:*:*:*:*:*:*:*

EPSS

Процентиль: 18%

0.00058

Низкий

7.1 High

CVSS3

5.6 Medium

CVSS2

Дефекты

CWE-294

EPSS

Процентиль: 18%

0.00058

Низкий

7.1 High

CVSS3

5.6 Medium

CVSS2

Дефекты

CWE-294