Описание
An insecure permissions issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. A user logged in using the default credentials can gain root access to the device, which provides permissions for all of the functionality of the device.
Ссылки
- Broken Link
- Product
- Vendor Advisory
- Broken Link
- Product
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 7.2.5.7 (исключая)
Одновременно
cpe:2.3:o:swisslog-healthcare:hmi-3_control_panel_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:swisslog-healthcare:hmi-3_control_panel:-:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00584
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-269
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
An insecure permissions issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. A user logged in using the default credentials can gain root access to the device, which provides permissions for all of the functionality of the device.
EPSS
Процентиль: 68%
0.00584
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-269