CVE-2024-36388

CVSS 3.1 Score 10.0 of 10 (high)

Details

Published Jun 2, 2024
Updated: Jun 3, 2024
CWE ID 305

Summary

CVE-2024-30388: A critical vulnerability has been identified in MileSight DeviceHub, which is classified as a CWE-305 Missing Authentication for Critical Function. This issue allows unauthenticated attackers to gain access to critical functions of the device hub, potentially leading to unauthorized control or data theft. The specific details of the attack vector and impact are not disclosed in the provided information, but it is recommended that users of MileSight DeviceHub apply the necessary patches or updates as soon as they become available to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share