Описание
An authentication bypass vulnerability exists in the Authentication functionality of Weston Embedded uC-FTPs v 1.98.00. A specially crafted set of network packets can lead to authentication bypass and denial of service. An attacker can send a sequence of unauthenticated packets to trigger this vulnerability.
Ссылки
- Patch
- ExploitThird Party Advisory
- Patch
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:weston-embedded:uc-ftps:1.98.00:*:*:*:*:*:*:*
EPSS
Процентиль: 15%
0.00047
Низкий
8.6 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-303
CWE-287
Связанные уязвимости
CVSS3: 8.6
github
больше 2 лет назад
An authentication bypass vulnerability exists in the Authentication functionality of Weston Embedded uC-FTPs v 1.98.00. A specially crafted set of network packets can lead to authentication bypass and denial of service. An attacker can send a sequence of unauthenticated packets to trigger this vulnerability.
EPSS
Процентиль: 15%
0.00047
Низкий
8.6 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-303
CWE-287