exploitDog

CVE-2021-46247

Опубликовано: 17 фев. 2022

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

The use of a hard-coded cryptographic key significantly increases the possibility encrypted data may be recovered from ASUS CMAX6000 v1.02.00.

Ссылки

https://drive.google.com/drive/folders/1lSaxWKiNKRkeZxQanEMpt906aUgDGUk_?usp=sharing
Exploit
Third Party Advisory
https://drive.google.com/drive/folders/1lSaxWKiNKRkeZxQanEMpt906aUgDGUk_?usp=sharing
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:asus:cmax6000_firmware:1.02.00:*:*:*:*:*:*:*

cpe:2.3:h:asus:cmax6000:-:*:*:*:*:*:*:*

EPSS

Процентиль: 52%

0.0029

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-798

Связанные уязвимости

GHSA-99gp-f3fj-f967

github

почти 4 года назад

The use of a hard-coded cryptographic key significantly increases the possibility encrypted data may be recovered from ASUS CMAX6000 v1.02.00.

EPSS

Процентиль: 52%

0.0029

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-798