CVE-2024-41681

NVD Published Date: August 13, 2024 at 08:15 AM
NVD Last Modified: August 14, 2024 at 06:37 PM
Download Patch
Vulnerability ID
CVE-2024-41681
Severity
HIGH
Severity Score
7.5
Summary
A vulnerability has been identified in Location Intelligence family (All versions < V4.4). The web server of affected products is configured to support weak ciphers by default. This could allow an unauthenticated attacker in an on-path position to to read and modify any data passed over the connection between legitimate clients and the affected device.
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE ID
CWE-326

Recent Publish

CVE-2024-41940

CVE-2024-36398

CVE-2024-41939

CVE-2024-41977

CVE-2024-41908

CVE-2024-41906

See SecOps Solution
in action

Schedule Demo