Описание
Daikin Europe N.V
Security Gateway is vulnerable to an authorization bypass through a user-controlled key vulnerability that could allow an attacker to bypass authentication. An unauthorized attacker could access the system without prior credentials.
EPSS
Процентиль: 35%
0.00146
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-640
Связанные уязвимости
CVSS3: 7.3
github
5 месяцев назад
Daikin Security Gateway is vulnerable to an authorization bypass through a user-controlled key vulnerability that could allow an attacker to bypass authentication. An unauthorized attacker could access the system without prior credentials.
CVSS3: 9.8
fstec
5 месяцев назад
Уязвимость шлюза безопасности Daikin Security Gateway, связанная с недостатком механизма восстановления пароля, позволяющая нарушителю получить несанкционированный доступ к системе
EPSS
Процентиль: 35%
0.00146
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-640