CVE-2023-29126

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 5, 2024
Updated: Nov 8, 2024
CWE ID 1287

Summary

CVE-2023-29126 is a newly identified vulnerability affecting the Waybox Enel X web management application. This issue involves a PHP-type juggling vulnerability, which can potentially enable a brute force process and circumvent authentication under specific conditions. An attacker could exploit this weakness to gain unauthorized access to the system, leading to potential data breaches or system compromises. Organizations using the Waybox Enel X application are urged to apply the necessary patches or updates to mitigate this risk and secure their systems.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share