CVE-2024-13967

Name of the Vulnerable Software and Affected Versions EIBPORT V3 KNX versions 3.9.8 and earlier EIBPORT V3 KNX GSM versions 3.9.8 and earlier

Description This issue allows a successful attacker to gain unauthorized access to a configuration web page delivered by the integrated web server of EIBPORT.

Recommendations For EIBPORT V3 KNX versions 3.9.8 and earlier, update to a version later than 3.9.8 to resolve the issue. For EIBPORT V3 KNX GSM versions 3.9.8 and earlier, update to a version later than 3.9.8 to resolve the issue. As a temporary workaround, consider restricting access to the integrated web server until a patch is available.