How severe is CVE-2024-29844?

CVE-2024-29844 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2024-29844

Name: evolution
Author: cs-technologies

9.8CRITICAL

Default credentials on the Web Interface of Evolution Controller 2.x allows anyone to log in to the server directly to perform administrative functions. Upon installation or upon first login, the appl

Publicado: 4/15/2024Atualizado: 12/10/2025

Descrição

Default credentials on the Web Interface of Evolution Controller 2.x allows anyone to log in to the server directly to perform administrative functions. Upon installation or upon first login, the application does not ask the user to change the password. There is no warning or prompt to ask the user to change the default password.

Análise IADesenvolvido por IA

Produtos Afetados

cs-technologiesevolution

Referências

https://directcyber.com.au/sa/CVE-2024-29836-to-29844-evolution-controller-multiple-vulnerabilities.html
Third Party Advisory
https://directcyber.com.au/sa/CVE-2024-29836-to-29844-evolution-controller-multiple-vulnerabilities.html
Third Party Advisory