Описание
The affected product has a hardcoded private key available inside the project folder, which may allow an attacker to achieve Web Server login and perform further actions.
Ссылки
- MitigationThird Party AdvisoryUS Government Resource
- MitigationThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 2.6.2 (включая)
Одновременно
cpe:2.3:o:advantech:adam-3600_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:advantech:adam-3600:-:*:*:*:*:*:*:*
EPSS
Процентиль: 42%
0.00199
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-321
CWE-798
Связанные уязвимости
github
почти 4 года назад
The affected product has a hardcoded private key available inside the project folder, which may allow an attacker to achieve Web Server login and perform further actions.
EPSS
Процентиль: 42%
0.00199
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-321
CWE-798