3 matches found
CVE-2024-8456 PLANET Technology switch devices - Missing Authentication for multiple HTTP routes
Certain switch models from PLANET Technology lack proper access control in firmware upload and download functionality, allowing unauthenticated remote attackers to download and upload firmware and system configurations, ultimately gaining full control of the devices...
CVE-2024-8456
PLANET Technology switches are affected by an authentication/authorization weakness in firmware upload and download functionality. The vulnerability allows unauthenticated remote attackers to download and upload firmware and system configurations, ultimately gaining full control of the devices. C...
CVE-2024-8456 PLANET Technology switch devices - Missing Authentication for multiple HTTP routes
Certain switch models from PLANET Technology lack proper access control in firmware upload and download functionality, allowing unauthenticated remote attackers to download and upload firmware and system configurations, ultimately gaining full control of the devices...