PT-2024-26057 · Unknown · Setupwizard
Patrik Gissleholm
·
Published
2024-09-03
·
Updated
2024-09-05
·
CVE-2024-34639
CVSS v3.1
4.6
Medium
| Vector | AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Setupwizard versions prior to SMR Aug-2024 Release 1
Description
The issue arises from improper handling of exceptional conditions, allowing physical attackers to bypass proper validation. This can be exploited by physical attackers.
Recommendations
For versions prior to SMR Aug-2024 Release 1, update to SMR Aug-2024 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting physical access to devices until the update can be applied.
Fix
Improper Handling of Exceptional Conditions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Setupwizard