Описание
The webreport generation feature in the Danfoss AK-EM100 allows an unauthorized actor to generate a web report that discloses sensitive information such as the internal IP address, usernames and internal device values.
Уязвимые конфигурации
Конфигурация 1Версия до 2.2.0.12 (исключая)
Одновременно
cpe:2.3:o:danfoss:ak-em100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:danfoss:ak-em100:-:*:*:*:*:*:*:*
EPSS
Процентиль: 27%
0.00098
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-200
CWE-200
Связанные уязвимости
CVSS3: 5
github
больше 2 лет назад
The webreport generation feature in the Danfoss AK-EM100 allows an unauthorized actor to generate a web report that discloses sensitive information such as the internal IP address, usernames and internal device values.
EPSS
Процентиль: 27%
0.00098
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-200
CWE-200