CVE-2022-3189 in iBoot-PDUthông tin

Tóm tắt

Bởi MITRE • 22/12/2022

Dataprobe iBoot-PDU FW versions prior to 1.42.06162022 contain a vulnerability where a specially crafted PHP script could use parameters from a HTTP request to create a URL capable of changing the host parameter. The changed host parameter in the HTTP could point to another host that will send a request to the host or IP specified in the changed host parameter.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

chịu trách nhiệm

ICS-CERT

Đặt trước

12/09/2022

Tiết lộ

22/12/2022

Kiểm duyệt

được chấp nhận

EPSS

0.00484

KEV

không

Các hoạt động

rất thấp

Nguồn

Might our Artificial Intelligence support you?

Check our Alexa App!