Описание
In LCOS 10.40 to 10.42.0473-RU3 with SNMPv3 enabled on LANCOM devices, changing the password of the root user via the CLI does not change the password of the root user for SNMPv3 access. (However, changing the password of the root user via LANconfig does change the password of the root user for SNMPv3 access.)
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 10.40 (включая) до 10.42.0473 (исключая)
Одно из
cpe:2.3:o:lancom-systems:lcos:*:*:*:*:*:*:*:*
cpe:2.3:o:lancom-systems:lcos:10.42.0473:-:*:*:*:*:*:*
cpe:2.3:o:lancom-systems:lcos:10.42.0473:release_update1:*:*:*:*:*:*
cpe:2.3:o:lancom-systems:lcos:10.42.0473:release_update2:*:*:*:*:*:*
cpe:2.3:o:lancom-systems:lcos:10.42.0473:release_update3:*:*:*:*:*:*
EPSS
Процентиль: 60%
0.00397
Низкий
8.8 High
CVSS3
8.5 High
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
github
больше 3 лет назад
In LCOS 10.40 to 10.42.0473-RU3 with SNMPv3 enabled on LANCOM devices, changing the password of the root user via the CLI does not change the password of the root user for SNMPv3 access. (However, changing the password of the root user via LANconfig does change the password of the root user for SNMPv3 access.)
EPSS
Процентиль: 60%
0.00397
Низкий
8.8 High
CVSS3
8.5 High
CVSS2
Дефекты
NVD-CWE-noinfo