Описание
Client-side enforcement of server-side security issue exists in wivia 5 all versions. If exploited, an unauthenticated attacker may bypass authentication and operate the affected device as the moderator user.
Ссылки
- Third Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:uchida:wivia_5_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:uchida:wivia_5:-:*:*:*:*:*:*:*
EPSS
Процентиль: 37%
0.00156
Низкий
6.5 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-602
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 6.5
github
8 месяцев назад
Client-side enforcement of server-side security issue exists in wivia 5 all versions. If exploited, an unauthenticated attacker may bypass authentication and operate the affected device as the moderator user.
EPSS
Процентиль: 37%
0.00156
Низкий
6.5 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-602
NVD-CWE-noinfo