exploitDog

CVE-2021-32930

Опубликовано: 11 июн. 2021

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

The affected product’s configuration is vulnerable due to missing authentication, which may allow an attacker to change configurations and execute arbitrary code on the iView (versions prior to v5.7.03.6182).

Ссылки

https://us-cert.cisa.gov/ics/advisories/icsa-21-154-01
Third Party Advisory
US Government Resource
https://us-cert.cisa.gov/ics/advisories/icsa-21-154-01
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:advantech:iview:*:*:*:*:*:*:*:*

Версия до 5.7.03.6182 (исключая)

EPSS

Процентиль: 63%

0.00449

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-306

Связанные уязвимости

GHSA-jf63-8279-v8vq

github

больше 3 лет назад

The affected product’s configuration is vulnerable due to missing authentication, which may allow an attacker to change configurations and execute arbitrary code on the iView (versions prior to v5.7.03.6182).

EPSS

Процентиль: 63%

0.00449

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-306