Описание
MicroServer copies parts of the system firmware to an unencrypted external SD card on boot, which contains user and vendor secrets. An attacker can utilize these plaintext secrets to modify the vendor firmware, or gain admin access to the web portal.
EPSS
Процентиль: 1%
0.00009
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-313
Связанные уязвимости
CVSS3: 6.5
github
около 1 месяца назад
MicroServer copies parts of the system firmware to an unencrypted external SD card on boot, which contains user and vendor secrets. An attacker can utilize these plaintext secrets to modify the vendor firmware, or gain admin access to the web portal.
EPSS
Процентиль: 1%
0.00009
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-313