How severe is CVE-2024-20462?

CVE-2024-20462 has a CVSS v3 score of 5.5 (MEDIUM).

CVE-2024-20462

5.5MEDIUM

A vulnerability in the web-based management interface of Cisco ATA 190 Series Multiplatform Analog Telephone Adapter firmware could allow an authenticated, local attacker with low privileges to view p

Publicado: 10/16/2024Atualizado: 10/31/2024

Descrição

A vulnerability in the web-based management interface of Cisco ATA 190 Series Multiplatform Analog Telephone Adapter firmware could allow an authenticated, local attacker with low privileges to view passwords on an affected device. This vulnerability is due to incorrect sanitization of HTML content from an affected device. A successful exploit could allow the attacker to view passwords that belong to other users.

Análise IADesenvolvido por IA

Produtos Afetados

ciscoata_191_firmware

ciscoata_191

ciscoata_191_firmware

ciscoata_191

ciscoata_192_firmware

ciscoata_192

Referências

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ata19x-multi-RDTEqRsy
Vendor Advisory