exploitDog

CVE-2022-47617

Опубликовано: 02 июн. 2023

Источник: nvd

CVSS3: 7.2

EPSS Низкий

Описание

Hitron CODA-5310 has hard-coded encryption/decryption keys in the program code. A remote attacker authenticated as an administrator can decrypt system files using the hard-coded keys for file access, modification, and cause service disruption.

Ссылки

https://www.twcert.org.tw/tw/cp-132-7083-94e13-1.html
Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-7083-94e13-1.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:hitrontech:coda-5310_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:hitrontech:coda-5310:-:*:*:*:*:*:*:*

EPSS

Процентиль: 41%

0.00194

Низкий

7.2 High

CVSS3

Дефекты

CWE-798

Связанные уязвимости

GHSA-3529-fghx-8h6c

CVSS3: 7.2

github

больше 2 лет назад

Hitron CODA-5310 has hard-coded encryption/decryption keys in the program code. A remote attacker authenticated as an administrator can decrypt system files using the hard-coded keys for file access, modification, and cause service disruption.

EPSS

Процентиль: 41%

0.00194

Низкий

7.2 High

CVSS3

Дефекты

CWE-798