4 matches found
CVE-2024-36444
cgi-bin/fdmcgiwebv2.cgi on Swissphone DiCal-RED 4009 devices allows an unauthenticated attacker to gain access to device logs...
DiCal-RED 4009 Log Disclosure
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2024-040 Product: DiCal-RED Manufacturer: Swissphone Wireless AG Affected Versions: Unknown Tested Versions: 4009 Vulnerability Type: Improper Authentication CWE-287 Risk Level: High Solution Status: Open Manufacturer Notification:...
CVE-2024-36444
cgi-bin/fdmcgiwebv2.cgi on Swissphone DiCal-RED 4009 devices allows an unauthenticated attacker to gain access to device logs...
CVE-2024-36444
CVE-2024-36444 affects Swissphone DiCal-RED 4009 devices. The issue is exposed via the endpoint cgi-bin/fdmcgiwebv2.cgi , enabling an unauthenticated attacker to access device logs. Multiple sources classify this as an authentication issue (Imporper Authentication/CWE-287) and note the vendor has...