CVE-2024-45494
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Dec 10, 2024
Updated: Dec 17, 2024
CWE ID 276
Summary
CVE-2024-45494: A vulnerability was discovered in MSA FieldServer Gateway versions 5.0.0 through 6.5.2. This gateway contains an internal administrative user account, which utilizes an insecure, static shared secret for authentication. The affected devices do not provide proper protection for this account, posing a significant risk to affected organizations. (Fixed in version 7.0.0)
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share