Vulnerability Details CVE-2017-6036
A Server-Side Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. The web server receives a request, but does not sufficiently verify that the request is being sent to the expected destination.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 37.0%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.3
References
Products affected by CVE-2017-6036
-
cpe:2.3:h:belden_hirschmann:gecko_lite_managed_switch:-
-
cpe:2.3:o:belden_hirschmann:gecko_lite_managed_switch_firmware:*