CVE-2024-41940

NVD Published Date: August 13, 2024 at 08:15 AM
NVD Last Modified: August 14, 2024 at 06:10 PM
Download Patch
Vulnerability ID
CVE-2024-41940
Severity
CRITICAL
Severity Score
9.1
Summary
A vulnerability has been identified in SINEC NMS (All versions < V3.0). The affected application does not properly validate user input to a privileged command queue. This could allow an authenticated attacker to execute OS commands with elevated privileges.
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
CWE ID
NVD-CWE-noinfo

Recent Publish

CVE-2024-36398

CVE-2024-41939

CVE-2024-41977

CVE-2024-41908

CVE-2024-41906

CVE-2024-41903

See SecOps Solution
in action

Schedule Demo