CVE-2024-12896

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Dec 22, 2024

Updated: Dec 24, 2024

CWE ID 284

CWE ID 200

Summary

CVE-2024-12896 is a newly disclosed vulnerability affecting Intelbras VIP S3020 G2, VIP S4020 G2, VIP S4020 G3, and VIP S4320 G2 up to version 20241222. This issue lies within the Web Interface component's /web_caps/webCapsConfig file and is classified as problematic. The manipulation of this file leads to information disclosure. The attack can be launched remotely, and the exploit has been made public. While the vendor downplays the significance of the disclosed information, assessing it as non-sensitive, the potential risks and implications remain unclear.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/1yGTsD
https://www.cve.org/CVERecord?id=CVE-2024-12896
https://nvd.nist.gov/vuln/detail/CVE-2024-12896

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners

CVE-2024-12896

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations