Описание
Incorrect access control in the administrative functionalities of BES--6024PB-I50H1 VideoPlayTool v2.0.1.0 allow attackers to execute arbitrary administrative commands via a crafted payload sent to the desired endpoints.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:a:besder:videoplaytool:2.0.1.0:*:*:*:*:*:*:*
cpe:2.3:h:besder:bes--6024pb-i50h1:-:*:*:*:*:*:*:*
EPSS
Процентиль: 23%
0.00078
Низкий
9.8 Critical
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-346
Связанные уязвимости
CVSS3: 9.8
github
больше 2 лет назад
Incorrect access control in the administrative functionalities of BES--6024PB-I50H1 VideoPlayTool v2.0.1.0 allow attackers to execute arbitrary administrative commands via a crafted payload sent to the desired endpoints.
EPSS
Процентиль: 23%
0.00078
Низкий
9.8 Critical
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-346