Описание
An authentication bypass vulnerability exists in the FOXMAN-UN/UNEM server / API Gateway component that if exploited allows attackers without any access to interact with the services and the post-authentication attack surface.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:hitachienergy:foxman-un:r15a:*:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:foxman-un:r15b:pc4:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:foxman-un:r16a:*:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:foxman-un:r16b:pc2:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:unem:r15a:*:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:unem:r15b:pc4:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:unem:r15b:pc5:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:unem:r16b:*:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:unem:r16b:pc2:*:*:*:*:*:*
EPSS
Процентиль: 29%
0.00104
Низкий
10 Critical
CVSS3
Дефекты
CWE-288
CWE-306
Связанные уязвимости
CVSS3: 10
github
больше 1 года назад
An authentication bypass vulnerability exists in the FOXMAN-UN/UNEM server / API Gateway component that if exploited allows attackers without any access to interact with the services and the post-authentication attack surface.
EPSS
Процентиль: 29%
0.00104
Низкий
10 Critical
CVSS3
Дефекты
CWE-288
CWE-306