CVE-2024-41889

NVD Published Date: August 05, 2024 at 05:15 AM
NVD Last Modified: August 30, 2024 at 05:53 PM
Download Patch
Vulnerability ID
CVE-2024-41889
Severity
CRITICAL
Severity Score
9.8
Summary
Multiple Pimax products accept WebSocket connections from unintended endpoints. If this vulnerability is exploited, arbitrary code may be executed by a remote unauthenticated attacker.
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE ID
NVD-CWE-Other

Recent Publish

CVE-2024-39713

CVE-2024-41720

CVE-2024-6118

CVE-2024-6117

CVE-2024-6270

CVE-2024-6710

See SecOps Solution
in action

Schedule Demo