Описание
Active debug code vulnerability exists in PLANEX COMMUNICATIONS wireless LAN routers. If a logged-in user who knows how to use the debug function accesses the device's management page, an unintended operation may be performed. Note that MZK-MF300N is no longer supported, therefore the update for this product is not provided.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:planex:mzk-mf300n_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:planex:mzk-mf300n:-:*:*:*:*:*:*:*
Конфигурация 2Версия до 1.18 (включая)
Одновременно
cpe:2.3:o:planex:mzk-mf300hp2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:planex:mzk-mf300hp2:-:*:*:*:*:*:*:*
EPSS
Процентиль: 17%
0.00054
Низкий
6.8 Medium
CVSS3
Дефекты
CWE-489
Связанные уязвимости
CVSS3: 6.8
github
почти 2 года назад
Active debug code vulnerability exists in MZK-MF300N all firmware versions. If a logged-in user who knows how to use the debug function accesses the device's management page, an unintended operation may be performed.
EPSS
Процентиль: 17%
0.00054
Низкий
6.8 Medium
CVSS3
Дефекты
CWE-489