CVE-2017-20039

CRITICAL

SICUNET Access Controller <0.32-05z - Weak Authentication

Title source: llm

Description

A vulnerability was found in SICUNET Access Controller 0.32-05z. It has been classified as very critical. This affects an unknown part. The manipulation leads to weak authentication. It is possible to initiate the attack remotely.

References (2)

[Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2017/Mar/25

[Third Party Advisory] https://vuldb.com/?id.98907

Scores

CVSS v3 9.8

EPSS 0.0040

EPSS Percentile 61.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-259 CWE-798

Status published

Products (1)

sicunet/access_control 0.32-05z

Published Jun 11, 2022

Tracked Since Feb 18, 2026