Описание
An API endpoint allows arbitrary log entries to be created via POST request. Without sufficient validation of the input data, an attacker can create manipulated log entries and thus falsify or dilute logs, for example.
Ссылки
- Vendor Advisory
- US Government Resource
- Not Applicable
- Vendor Advisory
- Vendor Advisory
- Product
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:sick:enterprise_analytics:*:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.0007
Низкий
6.5 Medium
CVSS3
5.3 Medium
CVSS3
Дефекты
CWE-117
Связанные уязвимости
CVSS3: 6.5
github
4 месяца назад
An API endpoint allows arbitrary log entries to be created via POST request. Without sufficient validation of the input data, an attacker can create manipulated log entries and thus falsify or dilute logs, for example.
EPSS
Процентиль: 21%
0.0007
Низкий
6.5 Medium
CVSS3
5.3 Medium
CVSS3
Дефекты
CWE-117