PT-2023-19364 · Snap One · Snap One Wattbox Wb-300-Ip-3

Name of the Vulnerable Software and Affected Versions: Snap One Wattbox WB-300-IP-3 versions WB10.9a17 and prior Description: The issue allows bypassing the brute force protection, enabling multiple attempts to force a login. Recommendations: For Snap One Wattbox WB-300-IP-3 versions WB10.9a17 an...

Snap One Wattbox 缓冲区错误漏洞

Snap One Wattbox is a range of power solutions from Snap One. A security vulnerability exists in Snap One Wattbox WB-300-IP-3 WB10.9a17 version and prior versions, which stems from vulnerability to heap-based buffer overflow attacks. An attacker exploiting this vulnerability could execute arbitra...

Snap One Wattbox 数据伪造问题漏洞

Snap One Wattbox is a line of power solutions from Snap One, Inc. Snap One Wattbox WB-300-IP-3 WB10.9a17 version and prior versions are vulnerable to a data forgery issue that stems from the use of a private local area network LAN protocol that does not validate device updates. An attacker could...

Snap One Wattbox 安全漏洞

Snap One Wattbox is a range of power solutions from Snap One. A security vulnerability exists in Snap One Wattbox WB-300-IP-3 WB10.9a17 and prior versions, which stems from allowing multiple attempts to force a login, which can be exploited by an attacker to brute-force a login...

Snap One Wattbox 安全漏洞

Snap One Wattbox is a range of power solutions from Snap One. A security vulnerability exists in the Snap One Wattbox WB-300-IP-3 WB10.9a17 version and prior versions, which stems from passwords being stored in a plaintext file that can be read by any user with access to the file...

Snap One Wattbox WB-300-IP-3

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Snap One Equipment: Wattbox WB-300-IP -3 Vulnerabilities: Improper Restriction of Excessive Authentication Attempts, Heap-based Buffer Overflow, Plaintext Storage of a Password, Insufficient Verificatio...