Описание
An issue was discovered in bridgetech VB288 Objective QoE Content Extractor, firmware version 5.6.0-8, allowing attackers to gain sensitive information such as administrator passwords via the /probe/core/setup/passwd endpoint.
Ссылки
- Product
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:bridgetech:vb288_firmware:5.6.0-8:*:*:*:*:*:*:*
cpe:2.3:h:bridgetech:vb288:-:*:*:*:*:*:*:*
EPSS
Процентиль: 6%
0.00025
Низкий
7.5 High
CVSS3
Дефекты
CWE-312
Связанные уязвимости
CVSS3: 7.5
github
3 месяца назад
An issue was discovered in bridgetech VB288 Objective QoE Content Extractor, firmware version 5.6.0-8, allowing attackers to gain sensitive information such as administrator passwords via the /probe/core/setup/passwd endpoint.
EPSS
Процентиль: 6%
0.00025
Низкий
7.5 High
CVSS3
Дефекты
CWE-312