← back
CVE-2016-2296

CVE-2016-2296

50Vexday Risk Score

Patch soon. It has a working public exploit.

ssvc Attendepss 64%
from disclosure to weapon3 days
Published on NVDMay 14
1st PoC+3d
exploitation probability
64%top 1% of all CVEs
observed exploitation
nono source reports it
2 public exploit(s)
Meteocontrol WEB'log Basic 100, Light, Pro, and Pro Unlimited does not require authentication for "post-admin" login pages, which allows remote attackers to obtain sensitive information or modify data via unspecified vectors.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.