CVE-2024-32008

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Spectrum Power versions prior to 4.70 SP12 Update 2

Description The application contains a flaw that allows local privilege escalation. An exposed debug interface on localhost enables any local user to gain code execution as an administrative application user.

Recommendations Update to version 4.70 SP12 Update 2 or later.

Fix

LPE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-648

Related Identifiers

BDU:2025-14353

CVE-2024-32008

Affected Products

Spectrum Power

CVE-2024-32008

Weakness Enumeration

Related Identifiers

Affected Products

References · 5