Описание
Observable Response Discrepancy in the SICK ICR890-4 could allow a remote attacker to identify valid usernames for the FTP server from the response given during a failed login attempt.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Product
- Vendor Advisory
- Vendor Advisory
- Product
Уязвимые конфигурации
Конфигурация 1Версия до 2.5.0 (исключая)
Одновременно
cpe:2.3:o:sick:icr890-4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:sick:icr890-4:-:*:*:*:*:*:*:*
EPSS
Процентиль: 44%
0.00217
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-204
CWE-203
Связанные уязвимости
CVSS3: 5.3
github
больше 2 лет назад
Observable Response Discrepancy in the SICK ICR890-4 could allow a remote attacker to identify valid usernames for the FTP server from the response given during a failed login attempt.
EPSS
Процентиль: 44%
0.00217
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-204
CWE-203