- Description
- The throttle capability in Swatch may fail to report certain events if (1) the same type of event occurs after the throttle period, or (2) when multiple events matching the same "watchfor" expression do not occur after the throttle period, which could allow attackers to avoid detection.
- Source
- cve@mitre.org
- NVD status
- Analyzed
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:swatch:swatch:3.0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C2ED1FEF-D736-4F4F-9EBB-635354F398B8"
},
{
"criteria": "cpe:2.3:a:swatch:swatch:3.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2B87D0BD-8BAE-4B03-8ADB-3FBE1F8784EE"
}
],
"operator": "OR"
}
]
}
]