How severe is CVE-2024-3082?

CVE-2024-3082 has a CVSS v3 score of 4.2 (MEDIUM).

CVE-2024-3082

Name: sensor_net_connect_v2
Author: proges

4.2MEDIUM

A “CWE-256: Plaintext Storage of a Password” affecting the administrative account allows an attacker with physical access to the machine to retrieve the password in cleartext unless specific security

Publicado: 7/31/2024Actualizado: 9/30/2024

Descripción

A “CWE-256: Plaintext Storage of a Password” affecting the administrative account allows an attacker with physical access to the machine to retrieve the password in cleartext unless specific security measures at other layers (e.g., full-disk encryption) have been enabled.

Análisis IAImpulsado por IA

Productos Afectados

progessensor_net_connect_firmware_v2

2.24

progessensor_net_connect_v2

Referencias

https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2024-3082
Third Party Advisory