PT-2024-20418 · Shenzen Tenda Technology · Cp3V2.0

Minj-Ae

Published

2024-02-07

Updated

2024-02-15

CVE-2024-24488

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Shenzen Tenda Technology CP3V2.0 version V11.10.00.2311090948

Description An issue in the password component allows a local attacker to obtain sensitive information.

Recommendations For version V11.10.00.2311090948, consider restricting access to the password component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Cleartext Storage of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-312

Related Identifiers

CVE-2024-24488

Affected Products

Cp3V2.0

PT-2024-20418 · Shenzen Tenda Technology · Cp3V2.0

CVE-2024-24488

Weakness Enumeration

Related Identifiers

Affected Products

References · 7