exploitDog

CVE-2024-41687

Опубликовано: 26 июл. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to transmission of password in plain text. A remote attacker could exploit this vulnerability by intercepting transmission within an HTTP session on the vulnerable system.

Successful exploitation of this vulnerability could allow the attacker to gain unauthorized access to the targeted system.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:syrotech:sy-gpon-1110-wdont_firmware:3.1.02-231102:*:*:*:*:*:*:*

cpe:2.3:h:syrotech:sy-gpon-1110-wdont:-:*:*:*:*:*:*:*

EPSS

Процентиль: 35%

0.00141

Низкий

7.5 High

CVSS3

Дефекты

CWE-319

CWE-319

Связанные уязвимости

GHSA-q2fj-w5rc-hrq8

CVSS3: 7.5

github

больше 1 года назад

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to transmission of password in plain text. A remote attacker could exploit this vulnerability by intercepting transmission within an HTTP session on the vulnerable system. Successful exploitation of this vulnerability could allow the attacker to gain unauthorized access to the targeted system.

EPSS

Процентиль: 35%

0.00141

Низкий

7.5 High

CVSS3

Дефекты

CWE-319

CWE-319