Sign-up

ID

VAR-202212-2682


TITLE

There is a weak password vulnerability in Tianqing Application Delivery Control System of Venustech Information Technology Group Co., Ltd.

Trust: 0.6

sources: CNVD: CNVD-2022-83643

DESCRIPTION

Tianqing application delivery control system is a traffic management solution with virtualized cloud computing center. There is a weak password vulnerability in the Tianqing application delivery control system of Venustech Information Technology Group Co., Ltd. Attackers use this vulnerability to log in to the background of the system to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2022-83643

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2022-83643

AFFECTED PRODUCTS

vendor:venustech information groupmodel:tianqing application delivery control systemscope:eqversion:v7.0

Trust: 0.6

sources: CNVD: CNVD-2022-83643

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2022-83643
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2022-83643
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2022-83643

PATCH

title:Patch for There is a weak password vulnerability in Tianqing Application Delivery Control System of Venustech Information Technology Group Co., Ltd.url:https://www.cnvd.org.cn/patchinfo/show/362006

Trust: 0.6

sources: CNVD: CNVD-2022-83643

EXTERNAL IDS

db:CNVDid:CNVD-2022-83643

Trust: 0.6

sources: CNVD: CNVD-2022-83643

SOURCES

db:CNVDid:CNVD-2022-83643

LAST UPDATE DATE

2023-09-28T22:58:39.404000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2022-83643date:2022-12-01T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2022-83643date:2022-12-16T00:00:00