ГлавнаяУязвимости → CVE-2024-8450
8.6высокая

CVE-2024-8450

Описание

Certain switch models from PLANET Technology have a Hard-coded community string in the SNMPv1 service, allowing unauthorized remote attackers to use this community string to access the SNMPv1 service with read-write privileges.

Затрагиваемое ПО
Planet Gs-4210-24p2s firmwarePlanet Gs-4210-24p2sPlanet Gs-4210-24pl4c firmwarePlanet Gs-4210-24pl4c
CVSS
Балл8.6 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
Источники
https://www.twcert.org.tw/en/cp-139-8050-52f32-2.htmlhttps://www.twcert.org.tw/tw/cp-132-8049-83fe4-1.html