admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2022/CVE-2022-30xx/CVE-2022-3010.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

148 lines
3.9 KiB
JSON
Raw Blame History

{
"id": "CVE-2022-3010",
"sourceIdentifier": "csirt@divd.nl",
"published": "2024-01-02T19:15:09.783",
"lastModified": "2024-11-21T07:18:37.887",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The Priva TopControl Suite contains\u00a0predictable credentials for the SSH service, based on the Serial number. Which makes it possible for an attacker to calculate the login credentials for the Priva TopControll suite."
},
{
"lang": "es",
"value": "Priva TopControl Suite contiene credenciales predecibles para el servicio SSH, basadas en el n\u00famero de serie. Lo que hace posible que un atacante calcule las credenciales de inicio de sesi\u00f3n para la suite Priva TopControll."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "csirt@divd.nl",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "csirt@divd.nl",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-1391"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-916"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:priva:top_control_suite:*:*:*:*:*:*:*:*",
"versionEndIncluding": "8.7.8.0",
"matchCriteriaId": "32C20BD5-643F-436B-AE1A-0FBDC39910B2"
}
]
}
]
}
],
"references": [
{
"url": "https://csirt.divd.nl/CVE-2022-3010",
"source": "csirt@divd.nl",
"tags": [
"Broken Link"
]
},
{
"url": "https://csirt.divd.nl/DIVD-2022-00035",
"source": "csirt@divd.nl",
"tags": [
"Broken Link"
]
},
{
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-22-356-01",
"source": "csirt@divd.nl",
"tags": [
"Third Party Advisory",
"US Government Resource"
]
},
{
"url": "https://csirt.divd.nl/CVE-2022-3010",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
]
},
{
"url": "https://csirt.divd.nl/DIVD-2022-00035",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
]
},
{
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-22-356-01",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"US Government Resource"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink