TROYANOSYVIRUS
Voltar para CVEs

CVE-2024-8310

CRITICAL
9.8

Descricao

OPW Fuel Management Systems SiteSentinel could allow an attacker to bypass authentication to the server and obtain full admin privileges.

Detalhes CVE

Pontuacao CVSS v3.19.8
SeveridadeCRITICAL
Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vetor de ataqueNETWORK
ComplexidadeLOW
Privilegios necessariosNONE
Interacao do usuarioNONE
Publicado9/27/2024
Ultima modificacao9/30/2024
Fontenvd
Avistamentos honeypot0

Fraquezas (CWE)

CWE-306

Referencias

https://www.cisa.gov/news-events/ics-advisories/icsa-24-268-01(ics-cert@hq.dhs.gov)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.