| tiêu đề | Vitogate300_Document Unauthorized Access |
|---|
| Mô tả | The Vitogate 300, the gateway used to connect the Viessmann LON to BACnet or Modbus, was deployed with a problem that allowed an attacker to access sensitive content such as configuration files without logging in.
Affected system version: x.x.x.x and lower
Vulnerability details:When we use directory scanning software like dirsearch, we can access and download these scanned directories without any authentication.It's very easy to get the configuration information of the server and the accounts and passwords and other related content
|
|---|
| Nguồn | ⚠️ https://github.com/GTA12138/vul/blob/main/Viessmann/Vitogate300_Document_Unauthorized_Access.md |
|---|
| Người dùng | rollingchair (UID 56410) |
|---|
| Đệ trình | 15/10/2023 07:20 (cách đây 3 những năm) |
|---|
| Kiểm duyệt | 22/10/2023 18:09 (7 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 243140 [Viessmann Vitogate 300 đến 2.1.3.0 /cgi-bin/ nâng cao đặc quyền] |
|---|
| điểm | 20 |
|---|