4ipnet EAP-767 v3.42.00 is vulnerable to Incorrect Access Control. The device uses the same set of credentials, regardless of how many times a user logs in, the content of the cookie remains unchanged.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/yckuo-sdc/PoC |
History
Fri, 16 Aug 2024 20:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-284 | |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-02-14T00:00:00
Updated: 2024-08-16T18:22:20.145Z
Reserved: 2024-01-25T00:00:00
Link: CVE-2024-24300
Vulnrichment
Updated: 2024-08-01T23:19:51.959Z
NVD
Status : Awaiting Analysis
Published: 2024-02-14T23:15:08.140
Modified: 2024-08-16T19:35:04.613
Link: CVE-2024-24300
Redhat
No data.