9.4
CVE-2017-9630
- EPSS 0.2%
- Veröffentlicht 07.08.2017 08:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
- Quelle ics-cert@hq.dhs.gov
- CVE-Watchlists
- Unerledigt
LoginAn Improper Authentication issue was discovered in PDQ Manufacturing LaserWash G5 and G5 S Series all versions, LaserWash M5, all versions, LaserWash 360 and 360 Plus, all versions, LaserWash AutoXpress and AutoExpress Plus, all versions, LaserJet, all versions, ProTouch Tandem, all versions, ProTouch ICON, all versions, and ProTouch AutoGloss, all versions. The web server does not properly verify that provided authentication information is correct.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Pdqinc ≫ Laserwash G5 Firmware Version-
Pdqinc ≫ Laserwash G5 S Firmware Version-
Pdqinc ≫ Laserwash M5 Firmware Version-
Pdqinc ≫ Laserwash 360 Firmware Version-
Pdqinc ≫ Laserwash 360 Plus Firmware Version-
Pdqinc ≫ Laserwash Autoxpress Firmware Version-
Pdqinc ≫ Laserwash Autoxpress Plus Firmware Version-
Pdqinc ≫ Laserjet Firmware Version-
Pdqinc ≫ Protouch Tandem Firmware Version-
Pdqinc ≫ Protouch Icon Firmware Version-
Pdqinc ≫ Protouch Autogloss Firmware Version-
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.2% | 0.387 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.4 | 3.9 | 5.5 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
CWE-287 Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.