CVE-2017-7909 in MESR901المعلومات

الملخص

بحسب MITRE

A Use of Client-Side Authentication issue was discovered in Advantech B+B SmartWorx MESR901 firmware versions 1.5.2 and prior. The web interface uses JavaScript to check client authentication and redirect unauthorized users. Attackers may intercept requests and bypass authentication to access restricted web pages.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

18/04/2017

إفشاء

05/05/2017

الاعتدال

تمت الموافقة

إدخال

VDB-100895

CPE

جاهز

CWE

CWE-287 (مؤكد)

CVSS

9.8 (NVD)

EPSS

0.01603

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-7909
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-7909
CVE Details	https://www.cvedetails.com/cve/CVE-2017-7909/

التالي ▸نظرة عامة ◂ السابق

Want to stay up to date on a daily basis?

Enable the mail alert feature now!