Overview
- Description
- CIRCUTOR Q-SMT in its firmware version 1.0.4, could be affected by a denial of service (DoS) attack if an attacker with access to the web service bypasses the authentication mechanisms on the login page, allowing the attacker to use all the functionalities implemented at web level that allow interacting with the device.
- Source
- cve-coordination@incibe.es
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 8.6
- Impact score
- 4
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
- Severity
- HIGH
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:circutor:q-smt_firmware:1.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "292A461E-4540-40B6-9366-E78BA7EB5EB9"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:circutor:q-smt:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "9DA81978-4905-41F2-869B-430A9AEC2EEC"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]