Lucene search
IcscertCVELIST:CVE-2024-21794HistoryFeb 01, 2024 - 11:25 p.m.
CVE-2024-21794 Open Redirect in Rapid SCADA
2024-02-0123:25:57
CWE-601
icscert
www.cve.org
4
cve-2024-21794
rapid scada
open redirect
login page
security vulnerability
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:L
AI Score
5.7
Confidence
High
EPSS
0
Percentile
13.3%
In Rapid Software LLCβs Rapid SCADA versions prior toΒ Version 5.8.4,Β an attacker can redirect users to malicious pages through the login page.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Rapid SCADA",
"vendor": "Rapid Software LLC",
"versions": [
{
"lessThanOrEqual": "5.8.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]Related
prion
prion
Authentication flaw
2024-02-02 00:15:00
cve
cve
CVE-2024-21794
2024-02-02 00:15:54
nvd
nvd
CVE-2024-21794
2024-02-02 00:15:54
ics
ics
Rapid Software LLC Rapid SCADA
2024-01-11 12:00:00
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:L
AI Score
5.7
Confidence
High
EPSS
0
Percentile
13.3%
Related for CVELIST:CVE-2024-21794