CVE-2024-8452

Sažetak

Certain switch models from PLANET Technology only support obsolete algorithms for authentication protocol and encryption protocol in the SNMPv3 service, allowing attackers to obtain plaintext SNMPv3 credentials potentially.

Reference

https://www.twcert.org.tw/en/cp-139-8054-231ad-2.html
https://www.twcert.org.tw/tw/cp-132-8053-274bd-1.html

CVSS

Base:	7.5
Impact:	3.6
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	NONE	NONE

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Zadnje važnije ažuriranje

04-10-2024 - 15:10

Objavljeno

30-09-2024 - 07:15