CVE-2024-39287
CVSS 3.1 Score 7.5 of 10 (high)
Details
Summary
CVE-2024-39287: Dorsett Controls' Central Server update server has been identified with a security vulnerability. An unprotected file on the server contains sensitive information, including passwords and API keys, which could be accessed and exploited by unauthorized individuals. This issue poses a significant risk of data breaches and unauthorized access to protected systems. The vulnerability underscores the importance of securing update servers and implementing proper access controls to prevent unauthorized access to sensitive information. Dorsett Controls is advised to address this issue promptly to mitigate potential risks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- InfoScan
Affected Vendors
- Dorsett Controls