Описание
Simple Diagnostics Agent - versions 1.0 (up to version 1.57.), allows an attacker to access information which would otherwise be restricted via a random port 9000-65535. This allows information gathering which could be used exploit future open-source security exploits.
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- ExploitMailing ListThird Party Advisory
- Vendor Advisory
- Permissions RequiredVendor Advisory
- ExploitThird Party AdvisoryVDB Entry
- ExploitMailing ListThird Party Advisory
- Vendor Advisory
- Permissions RequiredVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 1.0 (включая) до 1.58 (исключая)
cpe:2.3:a:sap:simple_diagnostics_agent:*:*:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.00617
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-200
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 7.5
github
почти 4 года назад
Simple Diagnostics Agent - versions 1.0 (up to version 1.57.), allows an attacker to access information which would otherwise be restricted via a random port 9000-65535. This allows information gathering which could be used exploit future open-source security exploits.
EPSS
Процентиль: 69%
0.00617
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-200
NVD-CWE-noinfo