exploitDog

CVE-2023-37608

Опубликовано: 03 янв. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

An issue in Automatic Systems SOC FL9600 FirstLane V06 lego_T04E00 allows a remote attacker to obtain sensitive information because there is an automaticsystems super admin account with astech as its hardcoded password.

Ссылки

https://github.com/CQURE/CVEs/tree/main/CVE-2023-37608
Exploit
Third Party Advisory
https://www.automatic-systems.com/range/
http://automatic-systems.com
http://soc.com
https://github.com/CQURE/CVEs/tree/main/CVE-2023-37608
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:automaticsystems:soc_fl9600_firstlane_firmware:06:*:*:*:*:*:*:*

cpe:2.3:h:automaticsystems:soc_fl9600_firstlane:-:*:*:*:*:*:*:*

EPSS

Процентиль: 25%

0.00088

Низкий

7.5 High

CVSS3

Дефекты

CWE-798

CWE-798

Связанные уязвимости

GHSA-qg3q-8fxm-jvxp

CVSS3: 7.5

github

около 2 лет назад

An issue in Automatic Systems SOC FL9600 FastLine v.lego_T04E00 allows a remote attacker to obtain sensitive information via the admin login credentials.

EPSS

Процентиль: 25%

0.00088

Низкий

7.5 High

CVSS3

Дефекты

CWE-798

CWE-798