Описание
Dell Enterprise SONiC OS, versions 3.3.0 and earlier, contains a sensitive information disclosure vulnerability. An authenticated malicious user with access to the system may use the TACACS\Radius credentials stored to read sensitive information and use it in further attacks.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.3.0 (включая)
cpe:2.3:o:dell:enterprise_sonic_os:*:*:*:*:*:*:*:*
EPSS
Процентиль: 49%
0.00259
Низкий
7.1 High
CVSS3
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-256
CWE-522
Связанные уязвимости
CVSS3: 6.5
github
больше 3 лет назад
Dell Enterprise SONiC OS, versions 3.3.0 and earlier, contains a sensitive information disclosure vulnerability. An authenticated malicious user with access to the system may use the TACACS\Radius credentials stored to read sensitive information and use it in further attacks.
EPSS
Процентиль: 49%
0.00259
Низкий
7.1 High
CVSS3
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-256
CWE-522