CVE-2022-47037 - Vulnerability Details

Vendors	Products
Siklu	Tg Firmware Tg Lr T280 Tg Mpl-261 Tg N265 Tg N366 Tg N367 Tg T260 Tg T261 Tg T265 Tg Terragraph

Link	Providers
https://semaja2.net/2023/06/11/siklu-tg-auth-bypass.html

Type	Values Removed	Values Added
First Time appeared		Siklu tg Terragraph
CPEs		cpe:2.3:a:siklu:tg_terragraph::::::::
Vendors & Products		Siklu tg Terragraph
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2022-47037", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2025-04-10T20:26:36.805Z", "dateReserved": "2022-12-12T00:00:00.000Z", "datePublished": "2024-03-18T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2024-03-18T03:05:14.435Z"}, "descriptions": [{"lang": "en", "value": "Siklu TG Terragraph devices before 2.1.1 allow attackers to discover valid, randomly generated credentials via GetCredentials."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://semaja2.net/2023/06/11/siklu-tg-auth-bypass.html"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-284", "lang": "en", "description": "CWE-284 Improper Access Control"}]}], "affected": [{"vendor": "siklu", "product": "tg_terragraph", "cpes": ["cpe:2.3:a:siklu:tg_terragraph:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "2.1.1", "versionType": "custom"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-03-19T19:45:37.037082Z", "id": "CVE-2022-47037", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-10T20:26:36.805Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T14:47:28.618Z"}, "title": "CVE Program Container", "references": [{"url": "https://semaja2.net/2023/06/11/siklu-tg-auth-bypass.html", "tags": ["x_transferred"]}]}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

state : PUBLISHED (string)

cveId : CVE-2022-47037 (string)

assignerOrgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

assignerShortName : mitre (string)

dateUpdated : 2025-04-10T20:26:36.805Z (string)

dateReserved : 2022-12-12T00:00:00.000Z (string)

datePublished : 2024-03-18T00:00:00.000Z (string)

}

containers : { »

cna : { »

providerMetadata : { »

orgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

shortName : mitre (string)

dateUpdated : 2024-03-18T03:05:14.435Z (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : Siklu TG Terragraph devices before 2.1.1 allow attackers to discover valid, randomly generated credentials via GetCredentials. (string)

}

]

affected : [ »

0 : { »

vendor : n/a (string)

product : n/a (string)

versions : [ »

0 : { »

version : n/a (string)

status : affected (string)

}

]

}

]

references : [ »

0 : { »

url : https://semaja2.net/2023/06/11/siklu-tg-auth-bypass.html (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

type : text (string)

lang : en (string)

description : n/a (string)

}

]

}

]

}

adp : [ »

0 : { »

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

type : CWE (string)

cweId : CWE-284 (string)

lang : en (string)

description : CWE-284 Improper Access Control (string)

}

]

}

]

affected : [ »

0 : { »

vendor : siklu (string)

product : tg_terragraph (string)

cpes : [ »

0 : cpe:2.3:a:siklu:tg_terragraph:*:*:*:*:*:*:*:* (string)

]

defaultStatus : unknown (string)

versions : [ »

0 : { »

version : 0 (string)

status : affected (string)

lessThan : 2.1.1 (string)

versionType : custom (string)

}

]

}

]

metrics : [ »

0 : { »

cvssV3_1 : { »

scope : UNCHANGED (string)

version : 3.1 (string)

baseScore : 7.5 (number)

attackVector : NETWORK (string)

baseSeverity : HIGH (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N (string)

integrityImpact : NONE (string)

userInteraction : NONE (string)

attackComplexity : LOW (string)

availabilityImpact : NONE (string)

privilegesRequired : NONE (string)

confidentialityImpact : HIGH (string)

}

1 : { »

other : { »

type : ssvc (string)

content : { »

timestamp : 2024-03-19T19:45:37.037082Z (string)

id : CVE-2022-47037 (string)

options : [ »

0 : { »

Exploitation : poc (string)

}

1 : { »

Automatable : yes (string)

}

2 : { »

Technical Impact : partial (string)

}

]

role : CISA Coordinator (string)

version : 2.0.3 (string)

}

]

title : CISA ADP Vulnrichment (string)

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2025-04-10T20:26:36.805Z (string)

}

1 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-03T14:47:28.618Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://semaja2.net/2023/06/11/siklu-tg-auth-bypass.html (string)

tags : [ »

0 : x_transferred (string)

]

}

]

}

]

}

Show plain JSON

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://semaja2.net/2023/06/11/siklu-tg-auth-bypass.html", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T14:47:28.618Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2022-47037", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-03-19T19:45:37.037082Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:siklu:tg_terragraph:*:*:*:*:*:*:*:*"], "vendor": "siklu", "product": "tg_terragraph", "versions": [{"status": "affected", "version": "0", "lessThan": "2.1.1", "versionType": "custom"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-284", "description": "CWE-284 Improper Access Control"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-19T16:17:00.361Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://semaja2.net/2023/06/11/siklu-tg-auth-bypass.html"}], "descriptions": [{"lang": "en", "value": "Siklu TG Terragraph devices before 2.1.1 allow attackers to discover valid, randomly generated credentials via GetCredentials."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2024-03-18T03:05:14.435Z"}}}, "cveMetadata": {"cveId": "CVE-2022-47037", "state": "PUBLISHED", "dateUpdated": "2025-04-10T20:26:36.805Z", "dateReserved": "2022-12-12T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2024-03-18T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.1"}

{

dataType : CVE_RECORD (string)

containers : { »

adp : [ »

0 : { »

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://semaja2.net/2023/06/11/siklu-tg-auth-bypass.html (string)

tags : [ »

0 : x_transferred (string)

]

}

]

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-03T14:47:28.618Z (string)

}

1 : { »

title : CISA ADP Vulnrichment (string)

metrics : [ »

0 : { »

cvssV3_1 : { »

scope : UNCHANGED (string)

version : 3.1 (string)

baseScore : 7.5 (number)

attackVector : NETWORK (string)

baseSeverity : HIGH (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N (string)

integrityImpact : NONE (string)

userInteraction : NONE (string)

attackComplexity : LOW (string)

availabilityImpact : NONE (string)

privilegesRequired : NONE (string)

confidentialityImpact : HIGH (string)

}

1 : { »

other : { »

type : ssvc (string)

content : { »

id : CVE-2022-47037 (string)

role : CISA Coordinator (string)

options : [ »

0 : { »

Exploitation : poc (string)

}

1 : { »

Automatable : yes (string)

}

2 : { »

Technical Impact : partial (string)

}

]

version : 2.0.3 (string)

timestamp : 2024-03-19T19:45:37.037082Z (string)

}

]

affected : [ »

0 : { »

cpes : [ »

0 : cpe:2.3:a:siklu:tg_terragraph:*:*:*:*:*:*:*:* (string)

]

vendor : siklu (string)

product : tg_terragraph (string)

versions : [ »

0 : { »

status : affected (string)

version : 0 (string)

lessThan : 2.1.1 (string)

versionType : custom (string)

}

]

defaultStatus : unknown (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

type : CWE (string)

cweId : CWE-284 (string)

description : CWE-284 Improper Access Control (string)

}

]

}

]

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-07-19T16:17:00.361Z (string)

}

]

cna : { »

affected : [ »

0 : { »

vendor : n/a (string)

product : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

references : [ »

0 : { »

url : https://semaja2.net/2023/06/11/siklu-tg-auth-bypass.html (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : Siklu TG Terragraph devices before 2.1.1 allow attackers to discover valid, randomly generated credentials via GetCredentials. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

type : text (string)

description : n/a (string)

}

]

}

]

providerMetadata : { »

orgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

shortName : mitre (string)

dateUpdated : 2024-03-18T03:05:14.435Z (string)

}

cveMetadata : { »

cveId : CVE-2022-47037 (string)

state : PUBLISHED (string)

dateUpdated : 2025-04-10T20:26:36.805Z (string)

dateReserved : 2022-12-12T00:00:00.000Z (string)

assignerOrgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

datePublished : 2024-03-18T00:00:00.000Z (string)

assignerShortName : mitre (string)

}

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siklu:tg_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "50DC665C-789B-468F-8BC2-DDC17AD47EC1", "versionEndExcluding": "2.1.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siklu:tg_lr_t280:-:*:*:*:*:*:*:*", "matchCriteriaId": "11E8403D-DB00-49D9-B31B-4DD3773E3DEA", "vulnerable": false}, {"criteria": "cpe:2.3:h:siklu:tg_mpl-261:-:*:*:*:*:*:*:*", "matchCriteriaId": "62ED75AA-DB96-449A-951E-D9F475DDE44C", "vulnerable": false}, {"criteria": "cpe:2.3:h:siklu:tg_n265:-:*:*:*:*:*:*:*", "matchCriteriaId": "E76E7BBE-005B-4763-B6B5-258D6425DC90", "vulnerable": false}, {"criteria": "cpe:2.3:h:siklu:tg_n366:-:*:*:*:*:*:*:*", "matchCriteriaId": "06C9F704-DA9D-4566-9C0C-B5E0E44E0EBC", "vulnerable": false}, {"criteria": "cpe:2.3:h:siklu:tg_n367:-:*:*:*:*:*:*:*", "matchCriteriaId": "0D7AF7EA-9ABC-470A-B1D7-BA36F5045849", "vulnerable": false}, {"criteria": "cpe:2.3:h:siklu:tg_t260:-:*:*:*:*:*:*:*", "matchCriteriaId": "B237F83B-6E14-4E94-969D-6640BEFDF2D8", "vulnerable": false}, {"criteria": "cpe:2.3:h:siklu:tg_t261:-:*:*:*:*:*:*:*", "matchCriteriaId": "6951CD15-EA5B-4EFC-B3C1-FD803A4D0579", "vulnerable": false}, {"criteria": "cpe:2.3:h:siklu:tg_t265:-:*:*:*:*:*:*:*", "matchCriteriaId": "0A4DB8EE-898C-443D-A687-D934D2671B9C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Siklu TG Terragraph devices before 2.1.1 allow attackers to discover valid, randomly generated credentials via GetCredentials."}, {"lang": "es", "value": "Los dispositivos Siklu TG Terragraph anteriores a 2.1.1 permiten a los atacantes descubrir credenciales v\u00e1lidas generadas aleatoriamente a trav\u00e9s de GetCredentials."}], "id": "CVE-2022-47037", "lastModified": "2024-11-21T07:31:26.417", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2024-03-18T03:15:06.017", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://semaja2.net/2023/06/11/siklu-tg-auth-bypass.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://semaja2.net/2023/06/11/siklu-tg-auth-bypass.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-522"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-284"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:siklu:tg_firmware:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 50DC665C-789B-468F-8BC2-DDC17AD47EC1 (string)

versionEndExcluding : 2.1.1 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:siklu:tg_lr_t280:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 11E8403D-DB00-49D9-B31B-4DD3773E3DEA (string)

vulnerable : false (boolean)

}

1 : { »

criteria : cpe:2.3:h:siklu:tg_mpl-261:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 62ED75AA-DB96-449A-951E-D9F475DDE44C (string)

vulnerable : false (boolean)

}

2 : { »

criteria : cpe:2.3:h:siklu:tg_n265:-:*:*:*:*:*:*:* (string)

matchCriteriaId : E76E7BBE-005B-4763-B6B5-258D6425DC90 (string)

vulnerable : false (boolean)

}

3 : { »

criteria : cpe:2.3:h:siklu:tg_n366:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 06C9F704-DA9D-4566-9C0C-B5E0E44E0EBC (string)

vulnerable : false (boolean)

}

4 : { »

criteria : cpe:2.3:h:siklu:tg_n367:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 0D7AF7EA-9ABC-470A-B1D7-BA36F5045849 (string)

vulnerable : false (boolean)

}

5 : { »

criteria : cpe:2.3:h:siklu:tg_t260:-:*:*:*:*:*:*:* (string)

matchCriteriaId : B237F83B-6E14-4E94-969D-6640BEFDF2D8 (string)

vulnerable : false (boolean)

}

6 : { »

criteria : cpe:2.3:h:siklu:tg_t261:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 6951CD15-EA5B-4EFC-B3C1-FD803A4D0579 (string)

vulnerable : false (boolean)

}

7 : { »

criteria : cpe:2.3:h:siklu:tg_t265:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 0A4DB8EE-898C-443D-A687-D934D2671B9C (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : Siklu TG Terragraph devices before 2.1.1 allow attackers to discover valid, randomly generated credentials via GetCredentials. (string)

}

1 : { »

lang : es (string)

value : Los dispositivos Siklu TG Terragraph anteriores a 2.1.1 permiten a los atacantes descubrir credenciales válidas generadas aleatoriamente a través de GetCredentials. (string)

}

]

id : CVE-2022-47037 (string)

lastModified : 2024-11-21T07:31:26.417 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : NONE (string)

baseScore : 7.5 (number)

baseSeverity : HIGH (string)

confidentialityImpact : HIGH (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 3.6 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

1 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : NONE (string)

baseScore : 7.5 (number)

baseSeverity : HIGH (string)

confidentialityImpact : HIGH (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 3.6 (number)

source : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

type : Secondary (string)

}

]

}

published : 2024-03-18T03:15:06.017 (string)

references : [ »

0 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Exploit (string)

1 : Third Party Advisory (string)

]

url : https://semaja2.net/2023/06/11/siklu-tg-auth-bypass.html (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Exploit (string)

1 : Third Party Advisory (string)

]

url : https://semaja2.net/2023/06/11/siklu-tg-auth-bypass.html (string)

}

]

sourceIdentifier : cve@mitre.org (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-522 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

1 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-284 (string)

}

]

source : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

type : Secondary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Exploitation poc

Automatable yes

Technical Impact partial

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Exploitation poc

Automatable yes

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object