Описание
An attacker could prepare a specially crafted project file that, if opened, would attempt to connect to the cloud and trigger a man in the middle (MiTM) attack. This could allow an attacker to obtain credentials and take over the user’s cloud account.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 18.1 (включая)
Одно из
cpe:2.3:a:azeotech:daqfactory:*:*:*:*:*:*:*:*
cpe:2.3:a:azeotech:daqfactory:18.1:build_2347:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.0011
Низкий
5 Medium
CVSS3
6.3 Medium
CVSS3
2.6 Low
CVSS2
Дефекты
CWE-471
Связанные уязвимости
github
больше 3 лет назад
An attacker could prepare a specially crafted project file that, if opened, would attempt to connect to the cloud and trigger a man in the middle (MiTM) attack. This could allow an attacker to obtain credentials and take over the user’s cloud account.
EPSS
Процентиль: 30%
0.0011
Низкий
5 Medium
CVSS3
6.3 Medium
CVSS3
2.6 Low
CVSS2
Дефекты
CWE-471