Lucene search

[email protected]CVE-2024-0336

HistoryJun 03, 2024 - 2:15 p.m.

CVE-2024-0336

2024-06-0314:15:08

CWE-284

[email protected]

web.nvd.nist.gov

cve-2024-0336

nvd

vulnerability

9.4 High

CVSS4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/SC:H/VI:H/SI:H/VA:H/SA:H

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

Improper Access Control vulnerability in EMTA Grup PDKS allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PDKS: before 20240603.

NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "PDKS",
    "vendor": "EMTA Grup",
    "versions": [
      {
        "lessThan": "20240603",
        "status": "affected",
        "version": "V3.04",
        "versionType": "custom"
      }
    ]
  }
]

References

www.usom.gov.tr/bildirim/tr-24-0600