Vulnerability CVE-2024-35294
Published: 2024-10-02

Description:
An unauthenticated remote attacker may use the devices traffic capture without authentication to grab plaintext administrative credentials.

Type:

CWE-306

 (Missing Authentication for Critical Function)

 References:
https://www.schneider-elektronik.de/wp-content/uploads/2024/07/SAR-202405-2.pdf
Copyright 2024, cxsecurity.com

 

Back to Top