Описание
Information exposure vulnerability in Shenzhen Reachfar v28, the exploitation of which could allow a remote attacker to retrieve all the week's logs stored in the 'log2' directory. An attacker could retrieve sensitive information such as remembered wifi networks, sent messages, SOS device locations and device configurations.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:reachfargps:reachfar_gps_firmware:28:*:*:*:*:*:*:*
cpe:2.3:h:reachfargps:reachfar_gps:-:*:*:*:*:*:*:*
EPSS
Процентиль: 50%
0.00264
Низкий
7.5 High
CVSS3
Дефекты
CWE-532
CWE-532
Связанные уязвимости
CVSS3: 7.5
github
больше 2 лет назад
Information exposure vulnerability in Shenzhen Reachfar v28, the exploitation of which could allow a remote attacker to retrieve all the week's logs stored in the 'log2' directory. An attacker could retrieve sensitive information such as remembered wifi networks, sent messages, SOS device locations and device configurations.
EPSS
Процентиль: 50%
0.00264
Низкий
7.5 High
CVSS3
Дефекты
CWE-532
CWE-532