提出 #220886: Vitogate300_Document Unauthorized Access情報

タイトルVitogate300_Document Unauthorized Access
説明The Vitogate 300, the gateway used to connect the Viessmann LON to BACnet or Modbus, was deployed with a problem that allowed an attacker to access sensitive content such as configuration files without logging in. Affected system version: x.x.x.x and lower Vulnerability details:When we use directory scanning software like dirsearch, we can access and download these scanned directories without any authentication.It's very easy to get the configuration information of the server and the accounts and passwords and other related content
ソース⚠️ https://github.com/GTA12138/vul/blob/main/Viessmann/Vitogate300_Document_Unauthorized_Access.md
ユーザー
 rollingchair (UID 56410)
送信2023年10月15日 07:20 (3 年 ago)
モデレーション2023年10月22日 18:09 (7 days later)
ステータス承諾済み
VulDBエントリ243140 [Viessmann Vitogate 300 迄 2.1.3.0 /cgi-bin/ 特権昇格]
ポイント20

Want to know what is going to be exploited?

We predict KEV entries!