CVE-2024-35244

CVSS 3.1 Score 9.1 of 10 (high)

Details

Published Nov 26, 2024
CWE ID 798

Summary

CVE-2024-35244 refers to a vulnerability where undocumented accounts exist within certain devices. These accounts, which include those intended for maintenance engineers, can be accessed by obtaining their passwords, potentially allowing unauthorized users to reconfigure the device. The specific product names, models, and versions impacted can be found in the vendor references.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share