Описание
In Pexip VMR self-service portal before 3, the same SSH host key is used across different customers' installations, which allows authentication bypass.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.0 (исключая)
cpe:2.3:a:pexip:virtual_meeting_rooms:*:*:*:*:*:*:*:*
EPSS
Процентиль: 11%
0.00037
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-798
CWE-798
Связанные уязвимости
CVSS3: 5.3
github
около 2 лет назад
In Pexip VMR self-service portal before 3, the same SSH host key is used across different customers' installations, which allows authentication bypass.
EPSS
Процентиль: 11%
0.00037
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-798
CWE-798