CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-12331

Authentication Bypass by Spoofing vulnerability in ECOS System Management Appliance (aka SMA) 5.2.68 allows a man-in-the-middle attacker to compromise authentication keys and configurations via IP spoofing during "Easy Enrollment."

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.5%

CVSS Severity

CVSS v3 Score 7.4

CVSS v2 Score 5.8

References

https://telematik.prakinf.tu-ilmenau.de/ecos-sbs/advisory.html
https://telematik.prakinf.tu-ilmenau.de/ecos-sbs/advisory.html

Products affected by CVE-2018-12331

Ecos » System Management Appliance » Version: 5.2.68

cpe:2.3:a:ecos:system_management_appliance:5.2.68

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-12331

Products

Pricing

Contact Us