Lucene search
HistoryFeb 02, 2024 - 12:15 a.m.
CVE-2024-21794
rapid scada
cve-2024-21794
redirect vulnerability
rapid software llc
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:L
AI Score
5.8
Confidence
High
EPSS
0
Percentile
13.3%
In Rapid Software LLCβs Rapid SCADA versions prior toΒ Version 5.8.4,Β an attacker can redirect users to malicious pages through the login page.
Affected configurations
Node
rapidscadarapid_scadaRangeβ€5.8.4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| rapidscada | rapid_scada | * | cpe:2.3:a:rapidscada:rapid_scada:*:*:*:*:*:*:*:* |
Related
prion
prion
Authentication flaw
2024-02-02 00:15:00
cve
cve
CVE-2024-21794
2024-02-02 00:15:54
cvelist
cvelist
CVE-2024-21794 Open Redirect in Rapid SCADA
2024-02-01 23:25:57
ics
ics
Rapid Software LLC Rapid SCADA
2024-01-11 12:00:00
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:L
AI Score
5.8
Confidence
High
EPSS
0
Percentile
13.3%
Related for NVD:CVE-2024-21794