CVE-2024-0188
CVSS 3.1 Score 8.1 of 10 (high)
Details
Published Jan 2, 2024
Updated: May 17, 2024
CWE ID 521
Summary
CVE-2024-0188 is a newly disclosed vulnerability affecting the RRJ Nueva Ecija Engineer Online Portal 1.0. This issue lies within the file change_password_teacher.php and results in weak password requirements. An attacker can exploit this remotely, but the complexity and difficulty of carrying out an attack are relatively high. The exploit for this vulnerability, identified as VDB-249501, has been made public, increasing the risk of its misuse.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- National Institute on Aging