Enterasys Vertical Horizon VH-2402S before firmware 2.05.05.09 does not properly restrict certain debugging commands to the ADMIN account, which could allow attackers to obtain sensitive information or modify the registry.

Threat-Mapped Scoring

Score: 3.0

Priority: P2 - Serious (High)

• S1 – Steal Customer Account Information

EPSS

Score: 0.00305
Percentile: 0.53226

CVSS Scoring

Affected Products

• cpe:2.3:h:enterasys:vertical_horizon-2402s:2.05.00:*:*:*:*:*:*:*
• cpe:2.3:h:enterasys:vertical_horizon-2402s:2.05.08.01:*:*:*:*:*:*:*
• cpe:2.3:h:enterasys:vertical_horizon-2402s:2.05.09.07:*:*:*:*:*:*:*

← Back to Home