exploitDog

CVE-2022-29735

Опубликовано: 02 июн. 2022

Источник: nvd

CVSS3: 8.8

CVSS2: 6.8

EPSS Низкий

Описание

Delta Controls enteliTOUCH 3.40.3935, 3.40.3706, and 3.33.4005 allows attackers to execute arbitrary commands via a crafted HTTP request.

Ссылки

https://www.deltacontrols.com/
Vendor Advisory
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5702.php
Exploit
Third Party Advisory
https://www.deltacontrols.com/
Vendor Advisory
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5702.php
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:o:deltacontrols:entelitouch_firmware:3.33.4005:*:*:*:*:*:*:*

cpe:2.3:o:deltacontrols:entelitouch_firmware:3.40.3706:*:*:*:*:*:*:*

cpe:2.3:o:deltacontrols:entelitouch_firmware:3.40.3935:*:*:*:*:*:*:*

cpe:2.3:h:deltacontrols:entelitouch:-:*:*:*:*:*:*:*

EPSS

Процентиль: 70%

0.00622

Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-f82p-mhgm-gg2r

CVSS3: 8.8

github

больше 3 лет назад

Delta Controls enteliTOUCH 3.40.3935, 3.40.3706, and 3.33.4005 allows attackers to execute arbitrary commands via a crafted HTTP request.

EPSS

Процентиль: 70%

0.00622

Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-352