← Zuruck zu CVEs

CVE-2024-28275

MEDIUM

6.5

Beschreibung

Puwell Cloud Tech Co, Ltd 360Eyes Pro v3.9.5.16(3090516) was discovered to transmit sensitive information in cleartext. This vulnerability allows attackers to intercept and access sensitive information, including users' credentials and password change requests.

CVE Details

CVSS v3.1 Bewertung6.5

SchweregradMEDIUM

CVSS VektorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

AngriffsvektorNETWORK

KomplexitatLOW

Erforderliche PrivilegienNONE

BenutzerinteraktionREQUIRED

Veroffentlicht4/3/2024

Zuletzt geandert11/21/2024

Quellenvd

Honeypot-Sichtungen0

Schwachen (CWE)

CWE-319

Referenzen

https://paste.sr.ht/~edaigle/0b4a037fbd3166c8c72fee18efaa7decaf75b0ab(cve@mitre.org)

https://paste.sr.ht/~edaigle/c9637d682b65e6501efb1324bba7787a2f775ff4(cve@mitre.org)

https://paste.sr.ht/~edaigle/0b4a037fbd3166c8c72fee18efaa7decaf75b0ab(af854a3a-2127-422b-91ae-364da2661108)

https://paste.sr.ht/~edaigle/c9637d682b65e6501efb1324bba7787a2f775ff4(af854a3a-2127-422b-91ae-364da2661108)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.