Vulnerability Details : CVE-2022-25571
Bluedon Information Security Technologies Co.,Ltd Internet Access Detector v1.0 was discovered to contain an information leak which allows attackers to access the contents of the password file via unspecified vectors.
Vulnerability category: Information leak
Products affected by CVE-2022-25571
- cpe:2.3:a:bluedon:internet_access_detector:1.0:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2022-25571
0.19%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 56 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2022-25571
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST | |
7.5
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
3.9
|
3.6
|
NIST |
CWE ids for CVE-2022-25571
-
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.Assigned by: nvd@nist.gov (Primary)
References for CVE-2022-25571
-
https://www.yuque.com/docs/share/a3a6f248-364b-459a-b572-52e7584192ba
Sensitive Information leakage vulnerability exists in Bluedon Information Security Technologies Co.,Ltd Internet access detector · 语雀Broken Link
Jump to