CVE-2024-36130

NVD Published Date: August 07, 2024 at 04:17 AM
NVD Last Modified: August 12, 2024 at 06:52 PM
Download Patch
Vulnerability ID
CVE-2024-36130
Severity
CRITICAL
Severity Score
9.8
Summary
An insufficient authorization vulnerability in web component of EPMM prior to 12.1.0.1 allows an unauthorized attacker within the network to execute arbitrary commands on the underlying operating system of the appliance.
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE ID
CWE-287

Recent Publish

CVE-2024-37403

CVE-2024-3973

CVE-2024-6494

CVE-2024-42222

CVE-2024-42062

CVE-2024-5290

See SecOps Solution
in action

Schedule Demo