Описание
Snap One OvrC Pro versions prior to 7.2 have their own locally running web server accessible both from the local network and remotely. OvrC cloud contains a hidden superuser account accessible through hard-coded credentials.
Ссылки
- Third Party AdvisoryUS Government Resource
- Release Notes
- Third Party AdvisoryUS Government Resource
- Release Notes
Уязвимые конфигурации
Конфигурация 1Версия до 7.2.0 (исключая)
cpe:2.3:a:snapone:orvc:*:*:*:*:*:pro:*:*
EPSS
Процентиль: 17%
0.00055
Низкий
8.3 High
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-1391
Связанные уязвимости
CVSS3: 8.3
github
больше 2 лет назад
Snap One OvrC Pro versions prior to 7.2 have their own locally running web server accessible both from the local network and remotely. OvrC cloud contains a hidden superuser account accessible through hard-coded credentials.
EPSS
Процентиль: 17%
0.00055
Низкий
8.3 High
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-1391