Описание
An unauthenticated attacker who can connect to the Web Services feature (HTTP TCP port 80) can issue a WS-Scan SOAP request containing an unexpected JobToken value which will crash the target device. The device will reboot, after which the attacker can reissue the command to repeatedly crash the device.
Ссылки
EPSS
Процентиль: 71%
0.00666
Низкий
7.5 High
CVSS3
Дефекты
CWE-1286
Связанные уязвимости
CVSS3: 7.5
github
8 месяцев назад
An unauthenticated attacker who can connect to the Web Services feature (HTTP TCP port 80) can issue a WS-Scan SOAP request containing an unexpected JobToken value which will crash the target device. The device will reboot, after which the attacker can reissue the command to repeatedly crash the device.
EPSS
Процентиль: 71%
0.00666
Низкий
7.5 High
CVSS3
Дефекты
CWE-1286