CVE-2024-29976 in NAS326informação

Sumário

de MITRE • 04/06/2024

** UNSUPPORTED WHEN ASSIGNED ** The improper privilege management vulnerability in the command “show_allsessions” in Zyxel NAS326 firmware versions before V5.21(AAZF.17)C0 and NAS542 firmware versions before V5.21(ABAG.14)C0 could allow an authenticated attacker to obtain a logged-in administrator’s session information containing cookies on an affected device.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Responsável

Zyxel Corporation

Reservar

22/03/2024

Divulgação

04/06/2024

Moderação

aceite

Entrada

VDB-266974

CPE

pronto

EPSS

0.08954

KEV

não

Atividades

muito baixo

Fontes

Might our Artificial Intelligence support you?

Check our Alexa App!