exploitDog

CVE-2022-36601

Опубликовано: 01 сент. 2022

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

The Eclipse TCF debug interface in JasMiner-X4-Server-20220621-090907 and below is open on port 1534. This issue allows unauthenticated attackers to gain root privileges on the affected device and access sensitive data or execute arbitrary commands.

Ссылки

https://jamesachambers.com/cryptocurrency-asic-miners-security-and-hacking-audit/
Exploit
Third Party Advisory
https://jamesachambers.com/cryptocurrency-asic-miners-security-and-hacking-audit/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:jinglemining:jasminer_x4_server_firmware:*:*:*:*:*:*:*:*

Версия до 20220621-090907 (включая)

cpe:2.3:h:jinglemining:jasminer_x4_server:-:*:*:*:*:*:*:*

EPSS

Процентиль: 85%

0.02401

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-6447-c9hr-5hv5

CVSS3: 9.8

github

больше 3 лет назад

The Eclipse TCF debug interface in JasMiner-X4-Server-20220621-090907 and below is open on port 1534. This issue allows unauthenticated attackers to gain root privileges on the affected device and access sensitive data or execute arbitrary commands.

EPSS

Процентиль: 85%

0.02401

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-Other