- Description
- HGiga PowerStation has a vulnerability of Information Leakage. An unauthenticated remote attacker can exploit this vulnerability to obtain the administrator's credential. This credential can then be used to login PowerStation or Secure Shell to achieve remote code execution.
- Source
- twcert@cert.org.tw
- NVD status
- Modified
CVSS 3.1
- Type
- Secondary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:hgiga:powerstation_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C3553132-CE95-4A61-9188-22D479C3E8A5",
"versionEndExcluding": "x64.6.2.165"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:hgiga:powerstation:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4335A03A-1D0E-4DC9-A71B-FA627DB38B2F"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]