Описание
User names used to access the web management interface are limited to the device identifier, which is a numerical identifier no more than 10 digits. A malicious actor can enumerate potential targets by incrementing or decrementing from known identifiers or through enumerating random digit sequences.
EPSS
Процентиль: 20%
0.00064
Низкий
8.6 High
CVSS3
Дефекты
CWE-204
Связанные уязвимости
CVSS3: 8.6
github
8 месяцев назад
User names used to access the web management interface are limited to the device identifier, which is a numerical identifier no more than 10 digits. A malicious actor can enumerate potential targets by incrementing or decrementing from known identifiers or through enumerating random digit sequences.
EPSS
Процентиль: 20%
0.00064
Низкий
8.6 High
CVSS3
Дефекты
CWE-204