exploitDog

CVE-2023-37833

Опубликовано: 31 окт. 2023

Источник: nvd

CVSS3: 2.7

EPSS Низкий

Описание

Improper access control in Elenos ETG150 FM transmitter v3.12 allows attackers to make arbitrary configuration edits that are only accessed by privileged users.

Ссылки

https://github.com/strik3r0x1/Vulns/blob/main/BAC%20leads%20to%20access%20Traps%20configurations.md
Exploit
Product
Third Party Advisory
https://github.com/strik3r0x1/Vulns/blob/main/BAC%20leads%20to%20access%20Traps%20configurations.md
Exploit
Product
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:elenos:etg150_firmware:3.12:*:*:*:*:*:*:*

cpe:2.3:h:elenos:etg150:-:*:*:*:*:*:*:*

EPSS

Процентиль: 14%

0.00046

Низкий

2.7 Low

CVSS3

Дефекты

CWE-20

Связанные уязвимости

GHSA-q6v3-24wc-vg36

CVSS3: 2.7

github

больше 2 лет назад

Improper access control in Elenos ETG150 FM transmitter v3.12 allows attackers to make arbitrary configuration edits that are only accessed by privileged users.

EPSS

Процентиль: 14%

0.00046

Низкий

2.7 Low

CVSS3

Дефекты

CWE-20