Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2023-0658

Опубликовано: 03 фев. 2023
Источник: nvd
CVSS3: 5.3
CVSS3: 7.5
CVSS2: 5
EPSS Низкий

Описание

A vulnerability, which was classified as critical, was found in Multilaser RE057 and RE170 2.1/2.2. This affects an unknown part of the file /param.file.tgz of the component Backup File Handler. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. The identifier VDB-220053 was assigned to this vulnerability.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:o:multilaser:re057_firmware:2.1:*:*:*:*:*:*:*
cpe:2.3:o:multilaser:re057_firmware:2.2:*:*:*:*:*:*:*
cpe:2.3:h:multilaser:re057:-:*:*:*:*:*:*:*
Конфигурация 2

Одновременно

Одно из

cpe:2.3:o:multilaser:re170_firmware:2.1:*:*:*:*:*:*:*
cpe:2.3:o:multilaser:re170_firmware:2.2:*:*:*:*:*:*:*
cpe:2.3:h:multilaser:re170:-:*:*:*:*:*:*:*

EPSS

Процентиль: 56%
0.00336
Низкий

5.3 Medium

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200
NVD-CWE-noinfo

Связанные уязвимости

github логотип

GHSA-v3wc-7fqh-5j7r

CVSS3: 7.5
github
около 3 лет назад

A vulnerability, which was classified as critical, was found in Multilaser RE057 and RE170 2.1/2.2. This affects an unknown part of the file /param.file.tgz of the component Backup File Handler. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. The identifier VDB-220053 was assigned to this vulnerability.

EPSS

Процентиль: 56%
0.00336
Низкий

5.3 Medium

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200
NVD-CWE-noinfo