Lucene search
K

7 matches found

NVD
NVD
added 2024/12/30 9:15 p.m.18 views

CVE-2024-11946

iXsystems TrueNAS CORE fetchpluginpackagesites tar Cleartext Transmission of Sensitive Information Vulnerability. This vulnerability allows network-adjacent attackers to tamper with firmware update files on affected installations of iXsystems TrueNAS devices. Authentication is not required to...

6.5CVSS0.00292EPSS
Exploits0References2
OSV
OSV
added 2024/12/30 9:15 p.m.5 views

CVE-2024-11946

iXsystems TrueNAS CORE fetchpluginpackagesites tar Cleartext Transmission of Sensitive Information Vulnerability. This vulnerability allows network-adjacent attackers to tamper with firmware update files on affected installations of iXsystems TrueNAS devices. Authentication is not required to...

6.5CVSS5.6AI score0.00292EPSS
Exploits0References2
Prion
Prion
added 2024/12/30 9:15 p.m.8 views

CVE-2024-11946

iXsystems TrueNAS CORE fetchpluginpackagesites tar Cleartext Transmission of Sensitive Information Vulnerability. This vulnerability allows network-adjacent attackers to tamper with firmware update files on affected installations of iXsystems TrueNAS devices. Authentication is not required to...

0.00292EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/12/30 8:12 p.m.19 views

CVE-2024-11946 iXsystems TrueNAS CORE fetch_plugin_packagesites tar Cleartext Transmission of Sensitive Information Vulnerability

iXsystems TrueNAS CORE fetchpluginpackagesites tar Cleartext Transmission of Sensitive Information Vulnerability. This vulnerability allows network-adjacent attackers to tamper with firmware update files on affected installations of iXsystems TrueNAS devices. Authentication is not required to...

3.1CVSS0.00292EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/12/30 8:12 p.m.11 views

CVE-2024-11946 iXsystems TrueNAS CORE fetch_plugin_packagesites tar Cleartext Transmission of Sensitive Information Vulnerability

iXsystems TrueNAS CORE fetchpluginpackagesites tar Cleartext Transmission of Sensitive Information Vulnerability. This vulnerability allows network-adjacent attackers to tamper with firmware update files on affected installations of iXsystems TrueNAS devices. Authentication is not required to...

3.1CVSS7AI score0.00292EPSS
Exploits0References2
CVE
CVE
added 2024/12/30 8:12 p.m.60 views

CVE-2024-11946

The CVE-2024-11946 entry concerns iXsystems TrueNAS CORE. The flaw exists in firmware update handling, caused by using an insecure protocol to deliver updates, enabling network-adjacent attackers to tamper with firmware update files on affected installations. Authentication is not required to exp...

6.5CVSS4.2AI score0.00292EPSS
Exploits0References2Affected Software1
Circl
Circl
added 2024/12/06 5:0 a.m.4 views

CVE-2024-11946

creationtimestamp| type| source ---|---|--- 2024-12-06 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1644/ 2024-12-30 20:19:23+00:00| seen| https://infosec.exchange/users/cve/statuses/113743623783771556 2024-12-30 22:39:24+00:00| seen| https://t.me/cvedetector/13965...

6.5CVSS4AI score0.00292EPSS
Exploits0References3
Rows per page
Query Builder