216.73.217.98

CVE-2024-31200

· Published 31/07/2024 14:15 · Modified 31/07/2024 14:15

Labels: CVE-2024-31200 2024-07-31CVE-2024-31200CWE-201[email protected]

Essential information

Published
31/07/2024 14:15
Modified
31/07/2024 14:15
Author
Creator
CVSS
4.2 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS metrics

Description

A “CWE-201: Insertion of Sensitive Information Into Sent Data” affecting the administrative account allows an attacker with physical access to the machine to retrieve the password in cleartext when an administrative session is open in the browser.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References