ГлавнаяУязвимости → CVE-2024-8459
7.2высокая

CVE-2024-8459

Описание

Certain switch models from PLANET Technology store SNMPv3 users' passwords in plaintext within the configuration files, allowing remote attackers with administrator privileges to read the file and obtain the credentials.

Затрагиваемое ПО
Planet Gs-4210-24p2s firmwarePlanet Gs-4210-24p2sPlanet Gs-4210-24pl4c firmwarePlanet Gs-4210-24pl4c
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.twcert.org.tw/en/cp-139-8068-8aaa5-2.htmlhttps://www.twcert.org.tw/tw/cp-132-8067-2fc50-1.html