CVSS 3.1 Score 6.2 of 10 (medium)


Published Feb 2, 2024
Updated: Feb 7, 2024
CWE ID 522
CWE ID 256


CVE-2024-21869 is a vulnerability in Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, where plaintext credentials are stored in various places within the affected product. This issue could allow an attacker with local access to view these credentials. The vulnerability has a base severity of MEDIUM and a base score of 6.2 according to the CVSS rating system. The confidentiality impact is rated as HIGH, while the integrity impact is NONE and the availability impact is NONE. There are 12 affected products identified, including pM0SNd, pM0SNc, VlH5SL, e9lUXm, and more. The exploitability score of this vulnerability is 2.5 out of 10. To remediate this vulnerability, organizations should update their Rapid SCADA software to Version 5.8.4 or later to ensure that plaintext credentials are no longer stored insecurely.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-21869 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options