Описание
An issue in Ateme Flamingo XL v.3.6.20 and XS v.3.6.5 allows a remote authenticated attacker to execute arbitrary code and cause a denial of service via a the session expiration function.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:ateme:flamingo_xl_firmware:3.6.20:*:*:*:*:*:*:*
cpe:2.3:h:ateme:flamingo_xl:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:ateme:flamingo_xs_firmware:3.6.5:*:*:*:*:*:*:*
cpe:2.3:h:ateme:flamingo_xs:-:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.0116
Низкий
8.8 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-613
Связанные уязвимости
CVSS3: 8.8
github
больше 2 лет назад
An issue in Ateme Flamingo XL v.3.6.20 and XS v.3.6.5 allows a remote authenticated attacker to execute arbitrary code and cause a denial of service via a the session expiration function.
EPSS
Процентиль: 78%
0.0116
Низкий
8.8 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-613