An attacker can directly request the ProGauge MAGLINK LX CONSOLE
resource sub page with full privileges by requesting the URL directly.
Metrics
Affected Vendors & Products
References
History
Wed, 25 Sep 2024 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Doverfuelingsolutions
Doverfuelingsolutions maglink Lx4 Console Doverfuelingsolutions maglink Lx Console |
|
CPEs | cpe:2.3:a:doverfuelingsolutions:maglink_lx4_console:*:*:*:*:*:*:*:* cpe:2.3:a:doverfuelingsolutions:maglink_lx_console:*:*:*:*:*:*:*:* |
|
Vendors & Products |
Doverfuelingsolutions
Doverfuelingsolutions maglink Lx4 Console Doverfuelingsolutions maglink Lx Console |
|
Metrics |
ssvc
|
Wed, 25 Sep 2024 00:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | An attacker can directly request the ProGauge MAGLINK LX CONSOLE resource sub page with full privileges by requesting the URL directly. | |
Title | Dover Fueling Solutions ProGauge MAGLINK LX CONSOLE Authentication Bypass Using an Alternate Path or Channel | |
Weaknesses | CWE-288 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2024-09-24T23:46:12.640Z
Updated: 2024-09-25T17:00:19.138Z
Reserved: 2024-09-05T20:11:00.318Z
Link: CVE-2024-43692
Vulnrichment
Updated: 2024-09-25T17:00:12.826Z
NVD
Status : Awaiting Analysis
Published: 2024-09-25T01:15:43.110
Modified: 2024-09-26T13:32:02.803
Link: CVE-2024-43692
Redhat
No data.