exploitDog

CVE-2024-24721

Опубликовано: 27 фев. 2024

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

An issue was discovered on Innovaphone PBX before 14r1 devices. The password form, used to authenticate, allows a Brute Force Attack through which an attacker may be able to access the administration panel

Ссылки

https://cds.thalesgroup.com/en/tcs-cert/CVE-2024-24721
Third Party Advisory
https://excellium-services.com/cert-xlm-advisory/CVE-2024-24721
Not Applicable
https://excellium-services.com/cert-xlm-advisory/CVE-2024-24721
Not Applicable

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:innovaphone:innovaphone_pbx:*:*:*:*:*:*:*:*

Версия до 14r1 (исключая)

EPSS

Процентиль: 43%

0.00206

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-307

Связанные уязвимости

GHSA-f78h-hr6r-68jw

CVSS3: 6.5

github

почти 2 года назад

An issue was discovered on Innovaphone PBX before 14r1 devices. The password form, used to authenticate, allows a Brute Force Attack through which an attacker may be able to access the administration panel

EPSS

Процентиль: 43%

0.00206

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-307