إرسال #220886: Vitogate300_Document Unauthorized Accessالمعلومات

عنوانVitogate300_Document Unauthorized Access
الوصفThe Vitogate 300, the gateway used to connect the Viessmann LON to BACnet or Modbus, was deployed with a problem that allowed an attacker to access sensitive content such as configuration files without logging in. Affected system version: x.x.x.x and lower Vulnerability details:When we use directory scanning software like dirsearch, we can access and download these scanned directories without any authentication.It's very easy to get the configuration information of the server and the accounts and passwords and other related content
المصدر⚠️ https://github.com/GTA12138/vul/blob/main/Viessmann/Vitogate300_Document_Unauthorized_Access.md
المستخدم
 rollingchair (UID 56410)
ارسال15/10/2023 07:20 AM (3 سنوات منذ)
الاعتدال22/10/2023 06:09 PM (7 days later)
الحالةتمت الموافقة
إدخال VulDB243140 [Viessmann Vitogate 300 حتى 2.1.3.0 /cgi-bin/ تجاوز الصلاحيات]
النقاط20

Do you want to use VulDB in your project?

Use the official API to access entries easily!