Описание
An issue was discovered in vTech VCS754 version 1.1.1.A before 1.1.1.H, allows attackers to gain escalated privileges and gain sensitive information due to cleartext passwords passed in the raw HTML.
Ссылки
- Exploit
- Third Party Advisory
- Exploit
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 1.1.1.a (включая) до 1.1.1.h (исключая)
Одновременно
cpe:2.3:o:vtech:vcs754a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:vtech:vcs754a:-:*:*:*:*:*:*:*
EPSS
Процентиль: 92%
0.07922
Низкий
8.8 High
CVSS3
Дефекты
CWE-319
CWE-319
Связанные уязвимости
CVSS3: 8.8
github
почти 3 года назад
An issue was discovered in vTech VCS754 version 1.1.1.A before 1.1.1.H, allows attackers to gain escalated privileges and gain sensitive information due to cleartext passwords passed in the raw HTML.
EPSS
Процентиль: 92%
0.07922
Низкий
8.8 High
CVSS3
Дефекты
CWE-319
CWE-319