Lucene search

[email protected]CVE-2023-6198

HistoryJun 25, 2024 - 2:15 a.m.

CVE-2023-6198

2024-06-2502:15:10

CWE-798

[email protected]

web.nvd.nist.gov

baicells snap router

hard-coded credentials

ep3011

user passwords

9.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:L

9.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Use of Hard-coded Credentials vulnerability in Baicells Snap Router BaiCE_BMI on EP3011 (User Passwords modules) allows unauthorized access to the device.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "modules": [
      "User Passwords"
    ],
    "packageName": "BaiCE_BMI",
    "platforms": [
      "EP3011"
    ],
    "product": "Snap Router",
    "vendor": "Baicells",
    "versions": [
      {
        "lessThanOrEqual": "BaiCE_BMI_1.3.5.10_NAC",
        "status": "affected",
        "version": "1.3.5.6",
        "versionType": "custom"
      }
    ]
  }
]

References

www.baicells.com

9.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:L

9.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for CVE-2023-6198

vulnrichment1 cvelist1 nvd1