Описание
Incorrect validation vulnerability of the data entered, allowing an attacker with access to the network on which the affected device is located to use the discovery port protocol (1925/UDP) to obtain device-specific information without the need for authentication.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:ingeteam:ingepac_da3451_firmware:0.29.2.42:*:*:*:*:*:*:*
cpe:2.3:h:ingeteam:ingepac_da3451:-:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.00068
Низкий
5.3 Medium
CVSS3
4.3 Medium
CVSS3
Дефекты
CWE-20
CWE-862
Связанные уязвимости
CVSS3: 5.3
github
больше 2 лет назад
Incorrect validation vulnerability of the data entered, allowing an attacker with access to the network on which the affected device is located to use the discovery port protocol (1925/UDP) to obtain device-specific information without the need for authentication.
EPSS
Процентиль: 21%
0.00068
Низкий
5.3 Medium
CVSS3
4.3 Medium
CVSS3
Дефекты
CWE-20
CWE-862