Описание
A vulnerability was found in TEM FLEX-1080 and FLEX-1085 1.6.0. It has been declared as problematic. This vulnerability log.cgi of the component Log Handler. A direct request leads to information disclosure of hardware information. The attack can be initiated remotely and does not require any form of authentication.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:tem:flex-1085_firmware:1.6.0:*:*:*:*:*:*:*
cpe:2.3:h:tem:flex-1085:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:tem:flex-1080_firmware:1.6.0:*:*:*:*:*:*:*
cpe:2.3:h:tem:flex-1080:-:*:*:*:*:*:*:*
EPSS
Процентиль: 87%
0.03176
Низкий
5.3 Medium
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-200
CWE-425
Связанные уязвимости
CVSS3: 7.5
github
почти 4 года назад
A vulnerability was found in TEM FLEX-1080 and FLEX-1085 1.6.0. It has been declared as problematic. This vulnerability log.cgi of the component Log Handler. A direct request leads to information disclosure of hardware information. The attack can be initiated remotely and does not require any form of authentication.
EPSS
Процентиль: 87%
0.03176
Низкий
5.3 Medium
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-200
CWE-425