exploitDog

CVE-2024-10943

Опубликовано: 12 нояб. 2024

Источник: nvd

CVSS3: 9.1

EPSS Низкий

Описание

An authentication bypass vulnerability exists in the affected product. The vulnerability exists due to shared secrets across accounts and could allow a threat actor to impersonate a user if the threat actor is able to enumerate additional information required during authentication.

Ссылки

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1710.html

EPSS

Процентиль: 21%

0.00068

Низкий

9.1 Critical

CVSS3

Дефекты

CWE-922

Связанные уязвимости

GHSA-mfc7-3m73-fjf3

CVSS3: 9.1

github

около 1 года назад

An authentication bypass vulnerability exists in the affected product. The vulnerability exists due to shared secrets across accounts and could allow a threat actor to impersonate a user if the threat actor is able to enumerate additional information required during authentication.

EPSS

Процентиль: 21%

0.00068

Низкий

9.1 Critical

CVSS3

Дефекты

CWE-922