CVE-2024-54764

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jan 6, 2025
Updated: Jan 7, 2025

Summary

CVE-2024-54764 is a newly identified access control vulnerability affecting the component /login/hostinfo2.cgi in ipTIME A2004 v12.17.0. This issue enables unauthenticated attackers to gain access to sensitive information. The vulnerability arises due to insufficient access controls, allowing unauthorized users to bypass the authentication process and access the protected data. The impact of this vulnerability could result in information disclosure, leading to potential security risks for affected organizations. It is crucial for ipTIME A2004 v12.17.0 users to apply the necessary patches or updates to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share