Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentJpcertVULNRICHMENT:CVE-2024-39771
HistoryAug 28, 2024 - 5:54 a.m.

CVE-2024-39771

2024-08-2805:54:05
jpcert
github.com
cve-2024-39771
certificate validation
man-in-the-middle

AI Score

6.8

Confidence

Low

EPSS

0.001

Percentile

22.3%

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON

QBiC CLOUD CC-2L v1.1.30 and earlier and Safie One v1.8.2 and earlier do not properly validate certificates, which may allow a network-adjacent unauthenticated attacker to obtain and/or alter communications of the affected product via a man-in-the-middle attack.

Related

cvelist 1
nvd 2
jvn 1
cve 2
cvelist
cvelist
CVE-2024-39771
2024-08-28 05:54:05
nvd
nvd
CVE-2024-39771
2024-08-28 06:15:06
CVE-2024-41718
2024-09-03 11:15:15
jvn
jvn
JVN#83440451: Multiple Safie products vulnerable to improper server certificate verification
2024-08-22 00:00:00
cve
cve
CVE-2024-39771
2024-08-28 06:15:06
CVE-2024-41718
2024-09-03 11:15:15

AI Score

6.8

Confidence

Low

EPSS

0.001

Percentile

22.3%

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON
Related for VULNRICHMENT:CVE-2024-39771
cvelist1nvd2jvn1cve2