CVE-2023-37362
HIGHWeintek Weincloud - Insufficiently Protected Credentials
Title source: ruleDescription
Weintek Weincloud v0.13.6 could allow an attacker to abuse the registration functionality to login with testing credentials to the official website.
Scores
CVSS v3
7.2
EPSS
0.0005
EPSS Percentile
16.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Classification
CWE
CWE-522
Status
published
Affected Products (1)
weintek/weincloud
Timeline
Published
Jul 19, 2023
Tracked Since
Feb 18, 2026