CVE-2024-0313

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Mar 14, 2024
CWE ID 670

Summary

CVE-2024-0313 is a vulnerability that can be exploited by a malicious insider to bypass existing security controls within an organization, potentially compromising the security of the system. If a legitimate user is using the temporary bypass to access the internet for updates, a remote device could target it and undo the bypass, causing the update service to fail. This vulnerability has a base severity of MEDIUM and a base score of 5.5, with low privileges required and no user interaction needed. The attack vector is local, and the impact on integrity is high. The vulnerability affects unknown products within the BIuvGo domain. No remediation steps or potential danger to an organization are provided in the text.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-0313 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options