ID |
CVE-2024-3741
|
Sažetak |
Electrolink transmitters are vulnerable to an authentication bypass
vulnerability affecting the login cookie. An attacker can set an
arbitrary value except 'NO' to the login cookie and have full system
access.
|
Reference |
|
CVSS |
Base: | 7.5 |
Impact: | 3.6 |
Exploitability: | 3.9 |
|
Pristup |
Vektor | Složenost | Autentikacija |
NETWORK |
LOW |
NONE |
|
Impact |
Povjerljivost | Cjelovitost | Dostupnost |
NONE |
HIGH |
NONE |
|
CVSS vektor |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
Zadnje važnije ažuriranje |
19-04-2024 - 13:10 |
Objavljeno |
18-04-2024 - 22:15 |