How severe is CVE-2024-20462?

CVE-2024-20462 has a CVSS v3 score of 5.5 (MEDIUM).

CVE-2024-20462

5.5MEDIUM

A vulnerability in the web-based management interface of Cisco ATA 190 Series Multiplatform Analog Telephone Adapter firmware could allow an authenticated, local attacker with low privileges to view p

Publicado: 10/16/2024Actualizado: 10/31/2024

Descripción

A vulnerability in the web-based management interface of Cisco ATA 190 Series Multiplatform Analog Telephone Adapter firmware could allow an authenticated, local attacker with low privileges to view passwords on an affected device. This vulnerability is due to incorrect sanitization of HTML content from an affected device. A successful exploit could allow the attacker to view passwords that belong to other users.

Análisis IAImpulsado por IA

Productos Afectados

ciscoata_191_firmware

ciscoata_191

ciscoata_191_firmware

ciscoata_191

ciscoata_192_firmware

ciscoata_192

Referencias

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ata19x-multi-RDTEqRsy
Vendor Advisory