exploitDog

CVE-2023-22581

Опубликовано: 24 апр. 2023

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

White Rabbit Switch contains a vulnerability which makes it possible for an attacker to perform system commands under the context of the web application (the default installation makes the webserver run as the root user).

Ссылки

https://csirt.divd.nl/CVE-2023-22581/
Broken Link
https://csirt.divd.nl/DIVD-2022-00068/
Broken Link
https://vuldb.com/?id.227269
Third Party Advisory
https://csirt.divd.nl/CVE-2023-22581/
Broken Link
https://csirt.divd.nl/DIVD-2022-00068/
Broken Link

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:home.cern:white_rabbit_switch_firmware:*:*:*:*:*:*:*:*

Версия до 6.0.1 (включая)

cpe:2.3:h:home.cern:white_rabbit_switch:-:*:*:*:*:*:*:*

EPSS

Процентиль: 37%

0.00161

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-20

NVD-CWE-noinfo

Связанные уязвимости

GHSA-wrhx-52hg-crxx

CVSS3: 9.8

github

больше 2 лет назад

White Rabbit Switch contains a vulnerability which makes it possible for an attacker to perform system commands under the context of the web application (the default installation makes the webserver run as the root user).

EPSS

Процентиль: 37%

0.00161

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-20

NVD-CWE-noinfo