Lucene search

CatoCVE-2024-6977

HistoryJul 31, 2024 - 5:15 p.m.

CVE-2024-6977

2024-07-3117:15:11

CWE-532

Cato

web.nvd.nist.gov

vulnerability

cato networks

sdp client

windows

log file

account takeover

bypassing protections

tunnel token

attack

system

version 5.10.34

CVSS3

6.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

EPSS

Percentile

9.4%

JSON

A vulnerability in Cato Networks SDP Client on Windows allows the insertion of sensitive information into the log file, which can lead to an account takeover. However, the attack requires bypassing protections on modifying the tunnel token on a the attacker’s system.This issue affects SDP Client: before 5.10.34.

Affected configurations

Nvd

Node

catonetworkscato_clientRange≤5.10.34windows

VendorProductVersionCPE
catonetworkscato_client*cpe:2.3:a:catonetworks:cato_client:*:*:*:*:*:windows:*:*

Vendor	Product	Version	CPE
catonetworks	cato_client	*	cpe:2.3:a:catonetworks:cato_client::::::windows::*

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Windows"
    ],
    "product": "SDP Client",
    "vendor": "Cato Networks",
    "versions": [
      {
        "lessThan": "5.10.28",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

References

support.catonetworks.com/hc/en-us/articles/19766795729437-CVE-2024-6977-Windows-SDP-Client-Sensitive-data-in-trace-logs-can-lead-to-account-takeover

CVSS3

6.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

EPSS

Percentile

9.4%

JSON

Related for CVE-2024-6977