exploitDog

CVE-2023-38132

Опубликовано: 18 авг. 2023

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

LAN-W451NGR all versions provided by LOGITEC CORPORATION contains an improper access control vulnerability, which allows an unauthenticated attacker to log in to telnet service.

Ссылки

https://jvn.jp/en/vu/JVNVU91630351/
Third Party Advisory
https://www.elecom.co.jp/news/security/20230810-01/
Vendor Advisory
https://jvn.jp/en/vu/JVNVU91630351/
Third Party Advisory
https://www.elecom.co.jp/news/security/20230810-01/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:elecom:lan-w451ngr_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:elecom:lan-w451ngr:-:*:*:*:*:*:*:*

EPSS

Процентиль: 38%

0.00168

Низкий

8.8 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-284

Связанные уязвимости

GHSA-6gvw-prxr-hcp7

CVSS3: 8.8

github

больше 2 лет назад

LAN-W451NGR all versions provided by LOGITEC CORPORATION contains an improper access control vulnerability, which allows an unauthenticated attacker to log in to telnet service.

EPSS

Процентиль: 38%

0.00168

Низкий

8.8 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-284