exploitDog

CVE-2022-39030

Опубликовано: 28 сент. 2022

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

smart eVision has inadequate authorization for system information query function. An unauthenticated remote attacker, who is not explicitly authorized to access the information, can access sensitive information.

Ссылки

https://www.twcert.org.tw/tw/cp-132-6567-01fa3-1.html
Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-6567-01fa3-1.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:lcnet:smart_evision:2022.02.21:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00849

Низкий

7.5 High

CVSS3

Дефекты

CWE-200

CWE-863

Связанные уязвимости

GHSA-q2pg-hwx8-x39w

CVSS3: 7.5

github

больше 3 лет назад

smart eVision has inadequate authorization for system information query function. An unauthenticated remote attacker, who is not explicitly authorized to access the information, can access sensitive information.

EPSS

Процентиль: 74%

0.00849

Низкий

7.5 High

CVSS3

Дефекты

CWE-200

CWE-863