Описание
A specific file on the sERP server if Kyungrinara(ERP solution) has a fixed password with the SYSTEM authority. This vulnerability could allow attackers to leak or steal sensitive information or execute malicious commands.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 20.2.161 (исключая)
Одновременно
cpe:2.3:a:webcash:serp_server_2.0:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 57%
0.00344
Низкий
8.1 High
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-798
CWE-798
Связанные уязвимости
CVSS3: 9.8
github
около 3 лет назад
A specific file on the sERP server if Kyungrinara(ERP solution) has a fixed password with the SYSTEM authority. This vulnerability could allow attackers to leak or steal sensitive information or execute malicious commands.
EPSS
Процентиль: 57%
0.00344
Низкий
8.1 High
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-798
CWE-798