Vulnerability CVE-2024-8878


Published: 2024-09-25

Description:
The password recovery mechanism for the forgotten password in Riello Netman 204 allows an attacker to reset the admin password and take over control of the device.This issue affects Netman 204: through 4.05.

See advisories in our WLB2 database:
Topic
Author
Date
Med.
Netman 204 4.05 SQL Injection / Unauthenticated Password Reset
T. Weber
13.10.2024

Type:

CWE-89

(Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

 References:
https://cyberdanube.com/en/en-multiple-vulnerabilities-in-riello-netman-204/index.html

Copyright 2024, cxsecurity.com

 

Back to Top