Description

A vulnerability classified as problematic has been found in GE Voluson S8. Affected is the file /uscgi-bin/users.cgi of the Service Browser. The manipulation leads to improper authentication and elevated access possibilities. It is possible to launch the attack on the local host.

Related CPE's

o

ge

voluson_s8_firmware

-

Vulnerable

h

ge

voluson_s8

-

References

https://vuldb.com/?id.129834

https://www.scip.ch/?news.20200701

https://vuldb.com/?id.129834

https://www.scip.ch/?news.20200701

Weaknesses

[email protected]

Secondary
CWE-287

[email protected]

Primary
CWE-287

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

5.9 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2022-06-17T11:15:11.993Z

3 years ago

Last modified

2024-11-21T04:29:48.710Z

1 year ago