Описание
Session Fixation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows Session Credential Falsification through Prediction.This issue affects PM43 versions prior to P10.19.050004. Update to the latest available firmware version of the respective printers to version MR19.5 (e.g. P10.19.050006).
Ссылки
- Permissions Required
- Permissions Required
- Product
- Permissions Required
- Permissions Required
- Product
Уязвимые конфигурации
Конфигурация 1Версия до p10.19.050004 (исключая)
Одновременно
cpe:2.3:o:honeywell:pm43_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:honeywell:pm43:-:*:*:*:*:*:x86:*
EPSS
Процентиль: 32%
0.00122
Низкий
6.4 Medium
CVSS3
8.8 High
CVSS3
Дефекты
CWE-384
CWE-384
Связанные уязвимости
CVSS3: 6.4
github
больше 2 лет назад
Session Fixation vulnerability in Honeywell PM43 on 32 bit, ARM (Printer web page modules) allows Session Credential Falsification through Prediction.This issue affects PM43 versions prior to P10.19.050004. Update to the latest available firmware version of the respective printers to version MR19.5 (e.g. P10.19.050006).
EPSS
Процентиль: 32%
0.00122
Низкий
6.4 Medium
CVSS3
8.8 High
CVSS3
Дефекты
CWE-384
CWE-384