PT-2024-31153 · Shanghai Zhouma Network Technology Co. · Ims Intelligent Manufacturing Collaborative Internet Of Things System

Published

2024-10-04

Updated

2024-10-08

CVE-2024-44439

CVSS v3.1

5.9

Medium

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions Shanghai Zhouma Network Technology CO., Ltd IMS Intelligent Manufacturing Collaborative Internet of Things System version 1.9.1

Description The issue allows a remote attacker to escalate privileges via an open port.

Recommendations For Shanghai Zhouma Network Technology CO., Ltd IMS Intelligent Manufacturing Collaborative Internet of Things System version 1.9.1, consider restricting access to the open port as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

CVE-2024-44439

Affected Products

Ims Intelligent Manufacturing Collaborative Internet Of Things System

CVE-2024-44439

Weakness Enumeration

Related Identifiers

Affected Products

References · 5