9.8
CVE-2023-37220
- EPSS 0.05%
- Veröffentlicht 03.09.2023 14:15:41
- Zuletzt bearbeitet 21.11.2024 08:11:13
- Quelle cna@cyber.gov.il
- CVE-Watchlists
- Unerledigt
LoginSynel Terminals - CWE-494: Download of Code Without Integrity Check
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Synel ≫ Synergy/a Firmware Version < 3015.1
Synel ≫ Synergy Touch Firmware Version < 3015.1
Synel ≫ Synergy 10 Firmware Version < 3015.1
Synel ≫ Synergy 5 Firmware Version < 3015.1
Synel ≫ Sy-910 Firmware Version < 3015.1
Synel ≫ Synergy/x Firmware Version < 3015.1
Synel ≫ Sy110 Face Firmware Version < 3015.1
Synel ≫ Bioentry-w2 Firmware Version < 3015.1
Synel ≫ Biolite-n2 Firmware Version < 3015.1
Synel ≫ Bioentry P2 Firmware Version < 3015.1
Synel ≫ Sy-711 Firmware Version < 3015.1
Synel ≫ Sy-715 Firmware Version < 3015.1
Synel ≫ Sy-751 Firmware Version < 3015.1
Synel ≫ Sy-755 Firmware Version < 3015.1
Synel ≫ Sy-777 Firmware Version < 3015.1
Synel ≫ Sy-785 Firmware Version < 3015.1
Synel ≫ Sy-765 Firmware Version < 3015.1
Synel ≫ Sy-7500 Firmware Version < 3015.1
Synel ≫ Sy-745 Firmware Version < 3015.1
Synel ≫ Sy-780 Firmware Version < 3015.1
Synel ≫ Synergy Firmware Version < 3015.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.05% | 0.146 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| cna@cyber.gov.il | 7.2 | 1.2 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
|
CWE-494 Download of Code Without Integrity Check
The product downloads source code or an executable from a remote location and executes the code without sufficiently verifying the origin and integrity of the code.