CVE-2024-0188

CVSS 3.1 Score 8.1 of 10 (high)

Details

Published Jan 2, 2024
Updated: May 17, 2024
CWE ID 521

Summary

CVE-2024-0188 is a newly disclosed vulnerability affecting the RRJ Nueva Ecija Engineer Online Portal 1.0. This issue lies within the file change_password_teacher.php and results in weak password requirements. An attacker can exploit this remotely, but the complexity and difficulty of carrying out an attack are relatively high. The exploit for this vulnerability, identified as VDB-249501, has been made public, increasing the risk of its misuse.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share