CVE-2024-2420

Name of the Vulnerable Software and Affected Versions LenelS2 NetBox versions prior to and including 5.6.1

Description The issue is related to hardcoded credentials in the LenelS2 NetBox access control and event monitoring system. This allows an attacker to bypass authentication requirements. The exploitation of this issue may enable a remote attacker to circumvent the authentication procedure.

Recommendations For versions prior to and including 5.6.1, update to a version later than 5.6.1 to resolve the issue. As a temporary workaround, consider restricting access to the system to minimize the risk of exploitation.