Lucene search
907edf6c-bf03-423e-ab1a-8da27e1aa1eaNVD:CVE-2024-3701HistoryApr 15, 2024 - 8:15 a.m.
CVE-2024-3701
2024-04-1508:15:18
CWE-306
CWE-287
907edf6c-bf03-423e-ab1a-8da27e1aa1ea
web.nvd.nist.gov
3
cve-2024-3701
system application
authentication check
malicious exploitations
system services
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
9.0%
The system application (com.transsion.kolun.aiservice) component does not perform an authentication check, which allows attackers to perform malicious exploitations and affect system services.
Related
vulnrichment
vulnrichment
CVE-2024-3701 Improper Authentication in com.transsion.kolun.aiservice
2024-04-15 07:56:07
cve
cve
CVE-2024-3701
2024-04-15 08:15:18
cvelist
cvelist
CVE-2024-3701 Improper Authentication in com.transsion.kolun.aiservice
2024-04-15 07:56:07
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2024-3701