CVE-2024-36388
CVSS 3.1 Score 10.0 of 10 (high)
Details
Summary
CVE-2024-30388: A critical vulnerability has been identified in MileSight DeviceHub, which is classified as a CWE-305 Missing Authentication for Critical Function. This issue allows unauthenticated attackers to gain access to critical functions of the device hub, potentially leading to unauthorized control or data theft. The specific details of the attack vector and impact are not disclosed in the provided information, but it is recommended that users of MileSight DeviceHub apply the necessary patches or updates as soon as they become available to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.