Описание
DELL ECS prior to 3.8.0.2 contains an improper verification of cryptographic signature vulnerability. A network attacker with an ability to intercept the request could potentially exploit this vulnerability to modify the body data of the request.
Уязвимые конфигурации
Конфигурация 1Версия до 3.8.0.2 (исключая)
cpe:2.3:a:dell:elastic_cloud_storage:*:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00087
Низкий
5.9 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-347
CWE-347
CWE-347
Связанные уязвимости
CVSS3: 5.9
github
почти 3 года назад
DELL ECS prior to 3.8.0.2 contains an improper verification of cryptographic signature vulnerability. A network attacker with an ability to intercept the request could potentially exploit this vulnerability to modify the body data of the request.
EPSS
Процентиль: 25%
0.00087
Низкий
5.9 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-347
CWE-347
CWE-347