exploitDog

CVE-2024-5313

Опубликовано: 12 июн. 2024

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

CWE-668: Exposure of the Resource Wrong Sphere vulnerability exists that exposes a SSH interface over the product network interface. This does not allow to directly exploit the product or make any unintended operation as the SSH interface access is protected by an authentication mechanism. Impacts are limited to port scanning and fingerprinting activities as well as attempts to perform a potential denial of service attack on the exposed SSH interface.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:o:schneider-electric:evlink_home_firmware:2.0.3.8.2_128:*:*:*:*:*:*:*

cpe:2.3:o:schneider-electric:evlink_home_firmware:2.0.4.1.2_131:*:*:*:*:*:*:*

cpe:2.3:h:schneider-electric:evlink_home:-:*:*:*:*:*:*:*

EPSS

Процентиль: 42%

0.00196

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-668

NVD-CWE-noinfo

Связанные уязвимости

GHSA-w3vp-r637-3fhj

CVSS3: 6.5

github

больше 1 года назад

CWE-668: Exposure of the Resource Wrong Sphere vulnerability exists that exposes a SSH interface over the product network interface. This does not allow to directly exploit the product or make any unintended operation as the SSH interface access is protected by an authentication mechanism. Impacts are limited to port scanning and fingerprinting activities as well as attempts to perform a potential denial of service attack on the exposed SSH interface.

EPSS

Процентиль: 42%

0.00196

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-668

NVD-CWE-noinfo