CVE-2024-10511 | THREATINT

Description

CWE-287: Improper Authentication vulnerability exists that could cause Denial of access to the web interface when someone on the local network repeatedly requests the /accessdenied URL.

PUBLISHED Reserved 2024-10-29 | Published 2024-12-11 | Updated 2024-12-11 | Assigner schneider

MEDIUM: 6.3CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

MEDIUM: 5.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Problem types

CWE-287 Improper Authentication

Product status

Default status

unaffected

Versions v1.2.0.301 and prior

affected

References

download.schneider-electric.com/...Name=SEVD-2024-345-01.pdf

cve.org (CVE-2024-10511)

nvd.nist.gov (CVE-2024-10511)

Download JSON