exploitDog

CVE-2024-38291

Опубликовано: 27 фев. 2025

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

In XIQ-SE before 24.2.11, a low-privileged user may be able to access admin passwords, which could lead to privilege escalation.

Ссылки

https://community.extremenetworks.com/t5/security-advisories-formerly/sa-2024-105-xiq-se-unauthorized-access-to-user-credentials-cve/ba-p/116363
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:extremenetworks:xiq-se:*:*:*:*:*:*:*:*

Версия до 24.2.11 (исключая)

EPSS

Процентиль: 33%

0.00133

Низкий

8.8 High

CVSS3

Дефекты

CWE-284

Связанные уязвимости

GHSA-g4v7-6h28-6phm

CVSS3: 8.8

github

11 месяцев назад

In XIQ-SE before 24.2.11, a low-privileged user may be able to access admin passwords, which could lead to privilege escalation.

EPSS

Процентиль: 33%

0.00133

Низкий

8.8 High

CVSS3

Дефекты

CWE-284