CVE-2024-3982

NVD Published Date: August 27, 2024 at 01:15 PM
NVD Last Modified: August 28, 2024 at 04:30 PM
Download Patch
Vulnerability ID
CVE-2024-3982
Severity
HIGH
Severity Score
8.2
Summary
An attacker with local access to machine where MicroSCADA X SYS600 is installed, could enable the session logging supporting the product and try to exploit a session hijacking of an already established session. By default, the session logging level is not enabled and only users with administrator rights can enable it.
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
CWE ID
CWE-294

Recent Publish

CVE-2024-4872

CVE-2024-7941

CVE-2024-3980

2024-03 Dynamic Cumulative Update for Windows 11 for x64-based Systems (KB5035854)

2024-03 Cumulative Update for Windows 11 for ARM64-based Systems (KB5035854)

2024-03 Dynamic Cumulative Update for Windows 11 for ARM64-based Systems (KB5035854)

See SecOps Solution
in action

Schedule Demo