Описание
It appears that some hardcoded keys are used for authentication to internal API. Knowing these private keys may allow attackers to bypass authentication and reach administrative interfaces. As for the affected products/models/versions, see the reference URL.
Ссылки
EPSS
Процентиль: 7%
0.00028
Низкий
7.1 High
CVSS3
Дефекты
CWE-798
Связанные уязвимости
CVSS3: 7.1
github
больше 1 года назад
It appears that some hardcoded keys are used for authentication to internal API. Knowing these private keys may allow attackers to bypass authentication and reach administrative interfaces. As for the affected products/models/versions, see the reference URL.
EPSS
Процентиль: 7%
0.00028
Низкий
7.1 High
CVSS3
Дефекты
CWE-798