Lucene search
TR-CERTCVE-2024-4341HistoryJul 08, 2024 - 2:15 p.m.
CVE-2024-4341
2024-07-0814:15:03
CWE-269
TR-CERT
web.nvd.nist.gov
30
privilege management
extreme xds
data collection
vulnerability
CVSS3
7.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.7%
Improper Privilege Management vulnerability in Ekstrem Bir Bilgisayar Danismanlik Ic Ve Dis Ticaret Ltd. Sti. Extreme XDS allows Collect Data as Provided by Users.This issue affects Extreme XDS: before 3928.
Affected configurations
Node
extremepacsextreme_xdsRange<3928
| Vendor | Product | Version | CPE |
|---|---|---|---|
| extremepacs | extreme_xds | * | cpe:2.3:a:extremepacs:extreme_xds:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Extreme XDS",
"vendor": "ExtremePacs",
"versions": [
{
"lessThan": "3928",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]References
Related
vulnrichment
vulnrichment
CVE-2024-4341 Information Disclosure in ExtremePacs's Extreme XDS
2024-07-08 13:46:12
cvelist
cvelist
CVE-2024-4341 Information Disclosure in ExtremePacs's Extreme XDS
2024-07-08 13:46:12
nvd
nvd
CVE-2024-4341
2024-07-08 14:15:03
CVSS3
7.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.7%
Related for CVE-2024-4341