CVE-2024-54763
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Summary
CVE-2024-54763 is a newly identified access control vulnerability affecting the /login/hostinfo.cgi component of ipTIME A2004 v12.17.0. This issue permits unauthenticated attackers to gain access to sensitive information, potentially leading to data breaches or further exploitation. The vulnerability arises from insufficient access controls in place, which allows an attacker to bypass authentication checks and access the protected information directly. The impacted component is responsible for handling host information, making it a critical area for securing against unauthorized access. Organizations using this outdated version of ipTIME A2004 are advised to apply patches or updates as soon as possible to mitigate the risk associated with this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.