CVE-2022-24036

Опубликовано: 16 нояб. 2022

Источник: nvd

CVSS3: 8.6

CVSS3: 5.3

EPSS Низкий

Описание

Karmasis Informatics Infraskope SIEM+ has an unauthenticated access vulnerability which could allow an unauthenticated attacker to modificate logs.

Ссылки

https://karmasis.com/urunlerimiz/infraskope-siem/
Product
https://www.usom.gov.tr/bildirim/tr-22-0691
Third Party Advisory
https://karmasis.com/urunlerimiz/infraskope-siem/
Product
https://www.usom.gov.tr/bildirim/tr-22-0691
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:karmasis:infraskope_siem\+:*:*:*:*:*:*:*:*

Версия до 7.10.00 (исключая)

EPSS

Процентиль: 34%

0.00137

Низкий

8.6 High

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-284

NVD-CWE-Other

Связанные уязвимости

GHSA-25rx-8qj3-xr2w

CVSS3: 5.3

github

почти 3 года назад

Karmasis informatics solutions Infraskope Security Event Manager product has an unauthenticated access which could allow an unauthenticated attacker to modificate logs.

EPSS

Процентиль: 34%

0.00137

Низкий

8.6 High

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-284

NVD-CWE-Other