CVE-2024-9928
CVSS 3.1 Score 5.3 of 10 (medium)
Details
Published Nov 26, 2024
CWE ID 307
Summary
CVE-2024-9928 is a newly identified vulnerability affecting the NSD570 login panel. This issue permits unlimited authentication attempts, potentially leading to account takeover and unauthorized access. Brute-force attacks exploiting this weakness could compromise system security, despite the system's implementation of a one-session policy and delay between failed login attempts. This vulnerability poses a significant risk, necessitating immediate attention and remediation.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share