Описание
The Cognex 3D-A1000 Dimensioning System in firmware version 1.0.3 (3354) and prior is vulnerable to CWE-117: Improper Output Neutralization for Logs, which allows an attacker to create false logs that show the password as having been changed when it is not, complicating forensics.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Одновременно
EPSS
5.3 Medium
CVSS3
Дефекты
Связанные уязвимости
The Cognex 3D-A1000 Dimensioning System in firmware version 1.0.3 (3354) and prior is vulnerable to CWE-117: Improper Output Neutralization for Logs, which allows an attacker to create false logs that show the password as having been changed when it is not, complicating forensics.
Уязвимость микропрограммного обеспечения cистемы объемного измерения Cognex 3D-A1000 Dimensioning System, связанная с неправильной обработкой выходных данных для журналов регистрации, позволяющая нарушителю создавать произвольные лог-файлы
EPSS
5.3 Medium
CVSS3