PT-2024-39296 · Riello · Riello Netman 204
D. Blagojevic
+5
·
Published
2024-09-19
·
Updated
2024-09-30
·
CVE-2024-8878
CVSS v4.0
10
Critical
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H |
Name of the Vulnerable Software and Affected Versions:
Riello Netman 204 versions through 4.05
Description:
The password recovery mechanism for the forgotten password in Riello Netman 204 allows an attacker to reset the admin password and take over control of the device.
Recommendations:
For versions through 4.05, update the software to a version that fixes this issue.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Riello Netman 204