CVE-2024-47256

CVSS 3.1 Score 6 of 10 (medium)

Details

Published Feb 6, 2025

Updated: Feb 21, 2025

CWE ID 321

Summary

CVE-2024-47256 is a vulnerability affecting versions 1.14 and older of 2N Access Commander. If exploited by an attacker with admin privileges, they can gain access to a hardcoded AES passphrase used for decrypting backup data. This could potentially lead to unauthorized access to sensitive information. To mitigate this issue, 2N has released version 3.3 of 2N Access Commander, and it is strongly advised that all users update to the latest version.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

2N TELEKOMUNIKACE a.s.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/y5MdjA
https://www.cve.org/CVERecord?id=CVE-2024-47256
https://nvd.nist.gov/vuln/detail/CVE-2024-47256

Back to Vulnerability Database

CVE-2024-47256

CVSS 3.1 Score 6 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations