PT-2024-15474 · Emta Grup · Emta Grup Pdks
Published
2024-06-03
·
Updated
2025-10-14
·
CVE-2024-0336
CVSS v4.0
9.4
Critical
| Vector | AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
EMTA Grup PDKS versions before 20240603
Description
The issue is related to an Improper Access Control vulnerability, allowing exploitation of incorrectly configured access control security levels. This vulnerability enables unauthorized access due to security misconfiguration. The vendor was contacted about this disclosure but did not respond.
Recommendations
For versions before 20240603, consider restricting access to sensitive areas of the system to minimize the risk of exploitation until a patch is available. As a temporary workaround, review and correct the configuration of access control security levels to prevent unauthorized access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Missing Authentication
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Emta Grup Pdks