CVE-2024-10511
CVSS 3.1 Score 5.3 of 10 (medium)
Details
Published Dec 11, 2024
CWE ID 287
Summary
CVE-2024-10511 is a recently disclosed cybersecurity vulnerability classified as an Improper Authentication issue (CWE-287). This weakness resides in a web interface, allowing an attacker on the local network to repeatedly request the /accessdenied URL, resulting in a Denial of Service outcome. The vulnerability could potentially prevent legitimate users from accessing the system, causing disruptions and hindering productivity. Network administrators are advised to apply the available security patch as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Schneider Electric SE