Description
Browsing the admin.html page allows the user to reset the admin password. Also appears in the JS code for the password.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
Low
Affected products
- Chcnav / Chcnav - P5E GNSS4.2 – 4.1*
References
- VENDOR_ADVISORYhttps://www.gov.il/en/Departments/faq/cve_advisories