CVE-2024-12896

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Dec 22, 2024
Updated: Dec 24, 2024
CWE ID 284
CWE ID 200

Summary

CVE-2024-12896 is a newly disclosed vulnerability affecting Intelbras VIP S3020 G2, VIP S4020 G2, VIP S4020 G3, and VIP S4320 G2 up to version 20241222. This issue is classified as problematic and involves some unknown functionality of the /web_caps/webCapsConfig file within the Web Interface component. Manipulation of this file results in information disclosure, which can be exploited remotely. While the vendor asserts that the exposed information is not sensitive, the exploit has become public, increasing the risk to users.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share