Описание
Seiko SkyBridge MB-A100/A110 v4.2.0 and below was discovered to contain an arbitrary file upload vulnerability via the restore backup function. This vulnerability allows attackers to execute arbitrary code via a crafted html file.
Ссылки
- Broken Link
- ProductVendor Advisory
- Broken Link
- ProductVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.2.0 (включая)
Одновременно
cpe:2.3:o:seiko-sol:skybridge_mb-a100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:seiko-sol:skybridge_mb-a100:-:*:*:*:*:*:*:*
Конфигурация 2Версия до 4.2.0 (включая)
Одновременно
cpe:2.3:o:seiko-sol:skybridge_mb-a110_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:seiko-sol:skybridge_mb-a110:-:*:*:*:*:*:*:*
EPSS
Процентиль: 82%
0.01782
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-434
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
Seiko SkyBridge MB-A100/A110 v4.2.0 and below was discovered to contain an arbitrary file upload vulnerability via the restore backup function. This vulnerability allows attackers to execute arbitrary code via a crafted html file.
EPSS
Процентиль: 82%
0.01782
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-434