216.73.217.86

CVE-2024-44069

· Published 19/08/2024 02:15 · Modified 19/08/2024 12:59

Labels: CVE-2024-44069 2024-08-19CVE-2024-44069[email protected]

Essential information

Published
19/08/2024 02:15
Modified
19/08/2024 12:59
Author
Creator
CISA KEV
No
CWE

Description

Pi-hole before 6 allows unauthenticated admin/api.php?setTempUnit= calls to change the temperature units of the web dashboard. NOTE: the supplier reportedly does "not consider the bug a security issue" but the specific motivation for letting arbitrary persons change the value (Celsius, Fahrenheit, or Kelvin), seen by the device owner, is unclear.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References