Описание
An access control issue in Makves DCAP v3.0.0.122 allows unauthenticated attackers to obtain cleartext credentials via a crafted web request to the product API.
Ссылки
- Not Applicable
- Not Applicable
- Third Party Advisory
- Not Applicable
- Not Applicable
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:makves:dcap:3.0.0.122:*:*:*:*:*:*:*
cpe:2.3:a:makves:dcap:3.0.0.183:*:*:*:*:*:*:*
EPSS
Процентиль: 28%
0.001
Низкий
7.5 High
CVSS3
Дефекты
CWE-312
CWE-312
Связанные уязвимости
CVSS3: 7.5
github
больше 2 лет назад
An access control issue in Makves DCAP v3.0.0.122 allows unauthenticated attackers to obtain cleartext credentials via a crafted web request to the product API.
EPSS
Процентиль: 28%
0.001
Низкий
7.5 High
CVSS3
Дефекты
CWE-312
CWE-312