CVE-2024-30124 - CERT CVE
ID CVE-2024-30124
Sažetak HCL Sametime is impacted by insecure services in-use on the UIM client by default. An unused legacy REST service was enabled by default using the HTTP protocol. An attacker could potentially use this service endpoint maliciously.
Reference
CVSS
Base: 4.0
Impact: 1.4
Exploitability:2.5
Pristup
VektorSloženostAutentikacija
LOCAL LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE NONE LOW
CVSS vektor CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Zadnje važnije ažuriranje 29-10-2024 - 15:35
Objavljeno 23-10-2024 - 16:15