CVE-2020-25580 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5.3 MEDIUM	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 47%

Affected Products (NVD)

Vendor	Product	Version
freebsd	freebsd	11.4
freebsd	freebsd	11.4:p1
freebsd	freebsd	11.4:p2
freebsd	freebsd	11.4:p3
freebsd	freebsd	11.4:p4
freebsd	freebsd	11.4:p5
freebsd	freebsd	11.4:p6
freebsd	freebsd	11.4:p7
freebsd	freebsd	12.2
freebsd	freebsd	12.2:p1
freebsd	freebsd	12.2:p2
freebsd	freebsd	12.2:p3

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-697 - Incorrect Comparison
The software compares two entities in a security-relevant context, but the comparison is incorrect, which may lead to resultant weaknesses.

References

https://security.FreeBSD.org/advisories/FreeBSD-SA-21:03.pam_login_access.asc

https://security.netapp.com/advisory/ntap-20210423-0005/

https://security.FreeBSD.org/advisories/FreeBSD-SA-21:03.pam_login_access.asc

https://security.netapp.com/advisory/ntap-20210423-0005/