CWE-287: Improper Authentication vulnerability exists that could cause Denial of access to the web interface when someone on the local network repeatedly requests the /accessdenied URL.
History

Wed, 11 Dec 2024 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Wed, 11 Dec 2024 09:15:00 +0000

Type Values Removed Values Added
Description CWE-287: Improper Authentication vulnerability exists that could cause Denial of access to the web interface when someone on the local network repeatedly requests the /accessdenied URL.
Weaknesses CWE-287
References
Metrics cvssV3_1

{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L'}

cvssV4_0

{'score': 6.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: schneider

Published: 2024-12-11T09:04:50.225Z

Updated: 2024-12-11T15:20:18.862Z

Reserved: 2024-10-29T18:32:49.688Z

Link: CVE-2024-10511

cve-icon Vulnrichment

Updated: 2024-12-11T15:20:13.333Z

cve-icon NVD

Status : Received

Published: 2024-12-11T09:15:05.293

Modified: 2024-12-11T09:15:05.293

Link: CVE-2024-10511

cve-icon Redhat

No data.