Описание
Certain switch models from PLANET Technology have an SSH service that improperly handles insufficiently authenticated connection requests, allowing unauthorized remote attackers to exploit this weakness to occupy connection slots and prevent legitimate users from accessing the SSH service.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.305b240802 (исключая)
Одновременно
cpe:2.3:o:planet:gs-4210-24p2s_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:planet:gs-4210-24p2s:3.0:*:*:*:*:*:*:*
Конфигурация 2Версия до 2.305b240719 (исключая)
Одновременно
cpe:2.3:o:planet:gs-4210-24pl4c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:planet:gs-4210-24pl4c:2.0:*:*:*:*:*:*:*
EPSS
Процентиль: 75%
0.00863
Низкий
7.5 High
CVSS3
Дефекты
CWE-280
Связанные уязвимости
CVSS3: 7.5
github
больше 1 года назад
Certain switch models from PLANET Technology have an SSH service that improperly handles insufficiently authenticated connection requests, allowing unauthorized remote attackers to exploit this weakness to occupy connection slots and prevent legitimate users from accessing the SSH service.
EPSS
Процентиль: 75%
0.00863
Низкий
7.5 High
CVSS3
Дефекты
CWE-280