How severe is CVE-2024-29844?

CVE-2024-29844 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2024-29844

Name: evolution
Author: cs-technologies

9.8CRITICAL

Default credentials on the Web Interface of Evolution Controller 2.x allows anyone to log in to the server directly to perform administrative functions. Upon installation or upon first login, the appl

Published: 4/15/2024Updated: 12/10/2025

Description

Default credentials on the Web Interface of Evolution Controller 2.x allows anyone to log in to the server directly to perform administrative functions. Upon installation or upon first login, the application does not ask the user to change the password. There is no warning or prompt to ask the user to change the default password.

AI AnalysisPowered by AI

Affected Products

cs-technologiesevolution

References

https://directcyber.com.au/sa/CVE-2024-29836-to-29844-evolution-controller-multiple-vulnerabilities.html
Third Party Advisory
https://directcyber.com.au/sa/CVE-2024-29836-to-29844-evolution-controller-multiple-vulnerabilities.html
Third Party Advisory