A CWE-862: Missing Authorization vulnerability exists in Easergy T300 (firmware 2.7 and older), that could cause a wide range of problems, including information exposures, denial of service, and arbitrary code execution when access control checks are not applied consistently.
References
Link | Resource |
---|---|
https://us-cert.cisa.gov/ics/advisories/icsa-20-343-03 | Third Party Advisory |
https://www.se.com/ww/en/download/document/SEVD-2020-315-06/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: schneider
Published: 2020-12-11T00:51:07
Updated: 2020-12-11T20:23:04
Reserved: 2020-11-05T00:00:00
Link: CVE-2020-28215
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-12-11T01:15:11.547
Modified: 2020-12-14T14:46:38.053
Link: CVE-2020-28215
JSON object: View
Redhat Information
No data.
CWE