Описание
Hongdian H8922 3.0.5 devices allow the unprivileged guest user to read cli.conf (with the administrator password and other sensitive data) via /backup2.cgi.
Ссылки
- ProductVendor Advisory
- ExploitThird Party Advisory
- ProductVendor Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:hongdian:h8922_firmware:3.0.5:*:*:*:*:*:*:*
cpe:2.3:h:hongdian:h8922:-:*:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.78839
Высокий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-425
Связанные уязвимости
CVSS3: 5.5
github
больше 3 лет назад
Hongdian H8922 3.0.5 devices allow the unprivileged guest user to read cli.conf (with the administrator password and other sensitive data) via /backup2.cgi.
EPSS
Процентиль: 99%
0.78839
Высокий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-425