Описание
Atlas Copco Power Focus 6000 web server does not sanitize the login information stored by the authenticated user’s browser, which could allow an attacker with access to the user’s computer to gain credential information of the controller.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:atlascopco:power_focus_6000_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:atlascopco:power_focus_6000:-:*:*:*:*:*:*:*
EPSS
Процентиль: 11%
0.00038
Низкий
9.4 Critical
CVSS3
7.5 High
CVSS3
Дефекты
CWE-312
Связанные уязвимости
CVSS3: 9.4
github
больше 2 лет назад
Atlas Copco Power Focus 6000 web server does not sanitize the login information stored by the authenticated user’s browser, which could allow an attacker with access to the user’s computer to gain credential information of the controller.
EPSS
Процентиль: 11%
0.00038
Низкий
9.4 Critical
CVSS3
7.5 High
CVSS3
Дефекты
CWE-312