This vulnerability exists in Matrix Door Controller Cosec Vega FAXQ due to improper implementation of session management at the web-based management interface. A remote attacker could exploit this vulnerability by sending a specially crafted http request on the vulnerable device.
Successful exploitation of this vulnerability could allow remote attacker to gain unauthorized access and take complete control of the targeted device.
References
Link | Resource |
---|---|
https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2024-0328 | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
14 Nov 2024, 21:44
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2024-0328 - Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
CPE | cpe:2.3:o:matrixcomsec:cosec_vega_faxq_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:matrixcomsec:cosec_vega_faxq:-:*:*:*:*:*:*:* |
|
First Time |
Matrixcomsec cosec Vega Faxq
Matrixcomsec Matrixcomsec cosec Vega Faxq Firmware |
|
CWE | NVD-CWE-Other |
28 Oct 2024, 13:58
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
25 Oct 2024, 13:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-10-25 13:15
Updated : 2024-11-14 21:44
NVD link : CVE-2024-10381
Mitre link : CVE-2024-10381
CVE.ORG link : CVE-2024-10381
JSON object : View
Products Affected
matrixcomsec
- cosec_vega_faxq
- cosec_vega_faxq_firmware
CWE