Details of VAR-202309-2820

ID

VAR-202309-2820

TITLE

There is an information leakage vulnerability in the load balancing system of Beijing Tianrongxin Technology Co., Ltd.

Trust: 0.6

sources: CNVD: CNVD-2023-77377

DESCRIPTION

Tianrongxin load balancing system can provide users with a complete set of data center solutions, including link load balancing and server load balancing in a single data center, as well as global load balancing in multiple data centers. There is an information leakage vulnerability in the load balancing system of Beijing Tianrongxin Technology Co., Ltd. An attacker can use the vulnerability to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2023-77377

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2023-77377

AFFECTED PRODUCTS

vendor:

tianrongxin

model:

load balancing system

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2023-77377

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2023-77377
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2023-77377
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2023-77377

EXTERNAL IDS

db:

CNVD

id:

CNVD-2023-77377

Trust: 0.6

sources: CNVD: CNVD-2023-77377

SOURCES

db:

CNVD

id:

CNVD-2023-77377

LAST UPDATE DATE

2023-11-21T05:33:59.935000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2023-77377

date:

2023-10-17T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2023-77377

date:

2023-09-14T00:00:00