CVE-2017-7909 in MESR901情報

要約

〜によって MITRE

A Use of Client-Side Authentication issue was discovered in Advantech B+B SmartWorx MESR901 firmware versions 1.5.2 and prior. The web interface uses JavaScript to check client authentication and redirect unauthorized users. Attackers may intercept requests and bypass authentication to access restricted web pages.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

予約する

2017年04月18日

公開

2017年05月05日

モデレーション

承諾済み

エントリ

VDB-100895

CPE

準備完了

CWE

CWE-287 (確認済み)

CVSS

9.8 (NVD)

EPSS

0.01603

KEV

いいえ

アクティビティ

非常低い

ソース

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-7909
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-7909
CVE Details	https://www.cvedetails.com/cve/CVE-2017-7909/

◂ 前概要次 ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!