Vulnerability Details CVE-2022-26591
FANTEC GmbH MWiD25-DS Firmware v2.000.030 allows unauthenticated attackers to access and download arbitrary files via a crafted GET request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.6%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2022-26591
-
cpe:2.3:h:fantec:mwid25-ds:-
-
cpe:2.3:o:fantec:mwid25-ds_firmware:2.000.030