CVE-2020-25195
CVE-2020-25195
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 1.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
15 dic 2020Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
The length of the input fields of Host Engineering H0-ECOM100, H2-ECOM100, and H4-ECOM100 modules are verified only on the client side when receiving input from the configuration web server, which may allow an attacker to bypass the check and send input to crash the device.
Productos afectados
n/a · Host Engineering H0-ECOM100 Modulen/a · Host Engineering H2-ECOM100 Modulen/a · Host Engineering H4-ECOM100 Module¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →