CVE-2024-47138
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Nov 22, 2024
CWE ID 306
Summary
CVE-2024-47138 is a newly disclosed vulnerability affecting an administrative interface. This weakness lies in the interface's default listening behavior on all network interfaces, which exposes it on TCP port without requiring any authentication. An unauthenticated attacker can potentially exploit this vulnerability to gain administrative access, compromising the targeted system's security. Organizations are advised to secure their administrative interfaces by disabling the default listening behavior and implementing strong authentication measures.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share