PT-2024-29805 · Unknown · Netguardian Din Remote Telemetry Unit
Goh Jing Loon
+1
·
Published
2024-04-30
·
Updated
2024-05-01
·
CVE-2024-4225
CVSS v3.1
7.6
High
| Vector | AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L |
Name of the Vulnerable Software and Affected Versions
NetGuardian DIN Remote Telemetry Unit (RTU) (affected versions not specified)
Description
The issue concerns multiple security vulnerabilities in the web interface of the NetGuardian DIN Remote Telemetry Unit (RTU). Attackers can exploit these vulnerabilities to perform critical actions such as escalating user privileges, stealing user credentials, Cross Site Scripting (XSS), and Cross-Site Request Forgery (CSRF).
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Netguardian Din Remote Telemetry Unit