7.8
CVE-2022-30421
- EPSS 0.35%
- Veröffentlicht 31.01.2023 01:15:11
- Zuletzt bearbeitet 27.03.2025 19:15:44
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginImproper Authentication vulnerability in Toshiba Storage Security Software V1.2.0.7413 is that allows for sensitive information to be obtained via(local) password authentication module.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Toshiba ≫ Storage Security Software Version1.2.0.7413
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.35% | 0.262 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-287 Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
http://global.11st.co.kr/glb/product/SellerProductDetail.tmall?method=getSellerProductDetail&prdNo=1398327038
http://global.gmarket.co.kr/item?goodscode=741668527
https://github.com/bosslabdcu/Vulnerability-Reporting/security/advisories/GHSA-px7r-44vj-8h7m
https://www.ebay.com/itm/274246695791