CVE-2022-24038

Опубликовано: 18 нояб. 2022

Источник: nvd

CVSS3: 6.5

CVSS3: 7.5

EPSS Низкий

Описание

Karmasis Informatics Infraskope SIEM+

has an unauthenticated access vulnerability which could allow an unauthenticated attacker to damage the page where the agents are listed.

Ссылки

https://karmasis.com/urunlerimiz/infraskope-siem/
Product
https://www.usom.gov.tr/bildirim/tr-22-0691
Third Party Advisory
https://karmasis.com/urunlerimiz/infraskope-siem/
Product
https://www.usom.gov.tr/bildirim/tr-22-0691
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:karmasis:infraskope_siem\+:*:*:*:*:*:*:*:*

Версия до 7.10.00 (исключая)

EPSS

Процентиль: 67%

0.0054

Низкий

6.5 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-284

NVD-CWE-Other

Связанные уязвимости

GHSA-4xj6-ppmm-pc93

CVSS3: 7.5

github

около 3 лет назад

Karmasis informatics solutions Infraskope Security Event Manager product has an unauthenticated access which could allow an unauthenticated attacker to damage the page where the agents are listed.

EPSS

Процентиль: 67%

0.0054

Низкий

6.5 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-284

NVD-CWE-Other