CVE-2024-32051

2024-04-2406:15:14

[email protected]

web.nvd.nist.gov

cve-2024-32051

information security

log file

vulnerability

network-adjacent attack

unauthenticated attacker

sensitive information

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

Insertion of sensitive information into log file issue exists in RoamWiFi R10 prior to 4.8.45. If this vulnerability is exploited, a network-adjacent unauthenticated attacker with access to the device may obtain sensitive information.

Affected configurations

Vulners

Node

roamwifi_technology_co.\,_ltd.roamwifi_r10Range<4.8.45

CNA Affected

[
  {
    "vendor": "RoamWiFi Technology Co., Ltd.",
    "product": "RoamWiFi R10",
    "versions": [
      {
        "version": "prior to 4.8.45",
        "status": "affected"
      }
    ]
  }
]

References

jvn.jp/en/jp/JVN62737544/

www.roamwifi.hk/product.jsp