ГлавнаяУязвимости → CVE-2022-47037
7.5высокая

CVE-2022-47037

Описание

Siklu TG Terragraph devices before 2.1.1 allow attackers to discover valid, randomly generated credentials via GetCredentials.

Затрагиваемое ПО
Siklu Tg firmwareSiklu Tg lr t280Siklu Tg mpl-261Siklu Tg n265Siklu Tg n366Siklu Tg n367Siklu Tg t260Siklu Tg t261Siklu Tg t265
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Источники
https://semaja2.net/2023/06/11/siklu-tg-auth-bypass.htmlhttps://semaja2.net/2023/06/11/siklu-tg-auth-bypass.html