Описание
The devices are vulnerable to an authentication bypass due to flaws in the authorization mechanism. An unauthenticated remote attacker could exploit this weakness by performing brute-force attacks to guess valid credentials or by using MD5 collision techniques to forge authentication hashes, potentially compromising the device.
EPSS
Процентиль: 26%
0.0009
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-328
Связанные уязвимости
CVSS3: 9.8
github
9 месяцев назад
The devices are vulnerable to an authentication bypass due to flaws in the authorization mechanism. An unauthenticated remote attacker could exploit this weakness by performing brute-force attacks to guess valid credentials or by using MD5 collision techniques to forge authentication hashes, potentially compromising the device.
EPSS
Процентиль: 26%
0.0009
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-328