PT-2024-7478 · Unknown · Mxsecurity
Chris Huang
+1
·
Published
2024-10-18
·
Updated
2024-10-18
·
CVE-2024-4740
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:C/A:N |
Name of the Vulnerable Software and Affected Versions:
MXsecurity versions v1.1.0 and prior
Description:
The issue is related to the use of hard-coded credentials in the MXsecurity software. This could allow an attacker to tamper with sensitive data. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.
Recommendations:
For versions v1.1.0 and prior, consider changing the hard-coded credentials to unique, secure credentials as a temporary workaround until a patch is available.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mxsecurity