CVE-2024-11630

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Nov 22, 2024
CWE ID 798
CWE ID 259

Summary

CVE-2024-11630 is a critical vulnerability affecting multiple E-Lins H series models (H685, H685f, H700, H720, H750, H820, H820Q, H820Q0, and H900 up to version 3.2). This issue lies within the unknown code of the OEM Backend component and enables an attacker to access hard-coded credentials, initiated remotely. The exploit for this vulnerability has been made public, posing a significant threat. Vendors were contacted about the disclosure but have yet to respond or provide a patch, making it essential for users to modify their configuration settings as a precautionary measure.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share