Origin Validation Error vulnerability in Dataprom Informatics Personnel Attendance Control Systems (PACS) / Access Control Security Systems (ACSS) allows Traffic Injection.This issue affects Personnel Attendance Control Systems (PACS) / Access Control Security Systems (ACSS): before 2024.
History

Tue, 19 Nov 2024 19:30:00 +0000

Type Values Removed Values Added
First Time appeared Dataprom
Dataprom personnel Attendance Control Systems \/ Access Control Security Systems
CPEs cpe:2.3:a:dataprom:personnel_attendance_control_systems_\/_access_control_security_systems:*:*:*:*:*:*:*:*
Vendors & Products Dataprom
Dataprom personnel Attendance Control Systems \/ Access Control Security Systems
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}


Fri, 15 Nov 2024 18:15:00 +0000

Type Values Removed Values Added
First Time appeared Dataprom Informatics
Dataprom Informatics access Control Security Systems
Dataprom Informatics personnel Attendance Control Systems
CPEs cpe:2.3:a:dataprom_informatics:access_control_security_systems:*:*:*:*:*:*:*:*
cpe:2.3:a:dataprom_informatics:personnel_attendance_control_systems:*:*:*:*:*:*:*:*
Vendors & Products Dataprom Informatics
Dataprom Informatics access Control Security Systems
Dataprom Informatics personnel Attendance Control Systems
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Fri, 15 Nov 2024 11:15:00 +0000

Type Values Removed Values Added
Description Origin Validation Error vulnerability in Dataprom Informatics Personnel Attendance Control Systems (PACS) / Access Control Security Systems (ACSS) allows Traffic Injection.This issue affects Personnel Attendance Control Systems (PACS) / Access Control Security Systems (ACSS): before 2024.
Title Improper Access Control in Dataprom Informatics' PACS-ACSS
Weaknesses CWE-346
References
Metrics cvssV4_0

{'score': 8.6, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: TR-CERT

Published: 2024-11-15T11:02:50.683Z

Updated: 2024-11-15T17:32:12.034Z

Reserved: 2024-10-30T11:22:18.535Z

Link: CVE-2024-10534

cve-icon Vulnrichment

Updated: 2024-11-15T17:30:27.941Z

cve-icon NVD

Status : Analyzed

Published: 2024-11-15T11:15:10.100

Modified: 2024-11-19T19:08:44.727

Link: CVE-2024-10534

cve-icon Redhat

No data.