ГлавнаяУязвимости → CVE-2024-8452
7.5высокая

CVE-2024-8452

Описание

Certain switch models from PLANET Technology only support obsolete algorithms for authentication protocol and encryption protocol in the SNMPv3 service, allowing attackers to obtain plaintext SNMPv3 credentials potentially.

Затрагиваемое ПО
Planet Gs-4210-24p2s firmwarePlanet Gs-4210-24p2sPlanet Gs-4210-24pl4c firmwarePlanet Gs-4210-24pl4c
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Источники
https://www.twcert.org.tw/en/cp-139-8054-231ad-2.htmlhttps://www.twcert.org.tw/tw/cp-132-8053-274bd-1.html