Описание
cashIT! - serving solutions. Devices from "PoS/ Dienstleistung, Entwicklung & Vertrieb GmbH" to 03.A06rks 2023.02.37 are affected by a origin bypass via the host header in an HTTP request. This vulnerability can be triggered by an HTTP endpoint exposed to the network.
Ссылки
- Technical Description
- Product
- Technical Description
- Product
Уязвимые конфигурации
Конфигурация 1Версия до 03.a06rks_2023.02.37 (включая)
cpe:2.3:a:cashit:cashit\!:*:*:*:*:*:*:*:*
EPSS
Процентиль: 1%
0.00011
Низкий
9.4 Critical
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-346
CWE-346
Связанные уязвимости
CVSS3: 9.4
github
больше 2 лет назад
cashIT! - serving solutions. Devices from "PoS/ Dienstleistung, Entwicklung & Vertrieb GmbH" to 03.A06rks 2023.02.37 are affected by a origin bypass via the host header in an HTTP request. This vulnerability can be triggered by an HTTP endpoint exposed to the network.
EPSS
Процентиль: 1%
0.00011
Низкий
9.4 Critical
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-346
CWE-346