Описание
There are no requirements for setting a complex password in the built-in web server of the SNAP PAC S1 Firmware version R10.3b, which could allow for a successful brute force attack if users don't set up complex credentials.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:opto22:snap_pac_s1_firmware:r10.3b:*:*:*:*:*:*:*
cpe:2.3:h:opto22:snap_pac_s1:-:*:*:*:*:*:*:*
EPSS
Процентиль: 18%
0.00058
Низкий
8.6 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-521
CWE-521
Связанные уязвимости
CVSS3: 8.6
github
больше 2 лет назад
There are no requirements for setting a complex password in the built-in web server of the SNAP PAC S1 Firmware version R10.3b, which could allow for a successful brute force attack if users don't set up complex credentials.
EPSS
Процентиль: 18%
0.00058
Низкий
8.6 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-521
CWE-521