PT-2024-1630 · Qolsys · Qolsys Iq Panel 4+1
Cody Jung
·
Published
2024-02-08
·
Updated
2024-02-15
·
CVE-2024-0242
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Qolsys IQ Panel 4 versions prior to 4.4.2
Qolsys IQ4 Hub versions prior to 4.4.2
Description
The issue is related to insufficient protection of service data in the IQ Panel 4 and IQ4 Hub panel software, which could allow unauthorized access to settings under certain circumstances.
Recommendations
For Qolsys IQ Panel 4 versions prior to 4.4.2, update to version 4.4.2 or later to resolve the issue.
For Qolsys IQ4 Hub versions prior to 4.4.2, update to version 4.4.2 or later to resolve the issue.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Qolsys Iq Panel 4
Qolsys Iq4 Hub