Описание
Sme.UP ERP TOKYO V6R1M220406 was discovered to contain an information disclosure vulnerability via the /debug endpoint. This vulnerability allows attackers to access cleartext credentials needed to authenticate to the AS400 system.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:smeup:erp:tokyo_v6r1m220406:*:*:*:*:*:*:*
EPSS
Процентиль: 18%
0.00058
Низкий
7.5 High
CVSS3
Дефекты
CWE-312
Связанные уязвимости
CVSS3: 7.5
github
почти 3 года назад
Sme.UP ERP TOKYO V6R1M220406 was discovered to contain an information disclosure vulnerability via the /debug endpoint. This vulnerability allows attackers to access cleartext credentials needed to authenticate to the AS400 system.
EPSS
Процентиль: 18%
0.00058
Низкий
7.5 High
CVSS3
Дефекты
CWE-312