Описание
Improper Authentication vulnerability in the cookie parameter of Circutor SGE-PLC1000 firmware version 0.9.2b allows an attacker to perform operations as an authenticated user. In order to exploit this vulnerability, the attacker must be within the network where the device affected is located.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:circutor:sge-plc1000_firmware:0.9.2b:*:*:*:*:*:*:*
cpe:2.3:h:circutor:sge-plc1000:-:*:*:*:*:*:*:*
EPSS
Процентиль: 31%
0.00115
Низкий
8.8 High
CVSS3
7.7 High
CVSS2
Дефекты
CWE-565
CWE-565
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
Improper Authentication vulnerability in the cookie parameter of Circutor SGE-PLC1000 firmware version 0.9.2b allows an attacker to perform operations as an authenticated user. In order to exploit this vulnerability, the attacker must be within the network where the device affected is located.
EPSS
Процентиль: 31%
0.00115
Низкий
8.8 High
CVSS3
7.7 High
CVSS2
Дефекты
CWE-565
CWE-565