CVE-2021-27823

EUVD-2021-14562
An information disclosure vulnerability was discovered in /index.class.php (via port 8181) on NetWave System 1.0 which allows unauthenticated attackers to exfiltrate sensitive information from the system.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 62%
Affected Products (NVD)
VendorProductVersion
mediateknetnetwave_system
1.0
𝑥
= Vulnerable software versions
References
https://www.mediateknet.net/
https://www.netwavesystem.net/
https://www.mediateknet.net/
https://www.netwavesystem.net/