CVE-2024-26559

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-26559
An issue in uverif v.2.0 allows a remote attacker to obtain sensitive information.

5.3 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://syst1m.cn/2024/01/22/U%E9%AA%8C%E8%AF%81%E7%BD%91%E7%BB%9C%E7%94%A8%E6%88%B7%E7%AE%A1%E7%90%86%E7%B3%BB%E7%BB%9F_%E4%BB%BB%E6%84%8F%E6%96%87%E4%BB%B6%E8%AF%BB%E5%8F%96%E6%BC%8F%E6%B4%9E/ Exploit Third Party Advisory
https://syst1m.cn/2024/01/22/U%E9%AA%8C%E8%AF%81%E7%BD%91%E7%BB%9C%E7%94%A8%E6%88%B7%E7%AE%A1%E7%90%86%E7%B3%BB%E7%BB%9F_%E4%BB%BB%E6%84%8F%E6%96%87%E4%BB%B6%E8%AF%BB%E5%8F%96%E6%BC%8F%E6%B4%9E/ Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:dagg:uverif:2.0:*:*:*:*:*:*:*
History

08 May 2025, 22:58

Type Values Removed Values Added
References () https://syst1m.cn/2024/01/22/U%E9%AA%8C%E8%AF%81%E7%BD%91%E7%BB%9C%E7%94%A8%E6%88%B7%E7%AE%A1%E7%90%86%E7%B3%BB%E7%BB%9F_%E4%BB%BB%E6%84%8F%E6%96%87%E4%BB%B6%E8%AF%BB%E5%8F%96%E6%BC%8F%E6%B4%9E/ - () https://syst1m.cn/2024/01/22/U%E9%AA%8C%E8%AF%81%E7%BD%91%E7%BB%9C%E7%94%A8%E6%88%B7%E7%AE%A1%E7%90%86%E7%B3%BB%E7%BB%9F_%E4%BB%BB%E6%84%8F%E6%96%87%E4%BB%B6%E8%AF%BB%E5%8F%96%E6%BC%8F%E6%B4%9E/ - Exploit, Third Party Advisory
CPE cpe:2.3:a:dagg:uverif:2.0:*:*:*:*:*:*:*
First Time Dagg
Dagg uverif

21 Nov 2024, 09:02

Type Values Removed Values Added
References () https://syst1m.cn/2024/01/22/U%E9%AA%8C%E8%AF%81%E7%BD%91%E7%BB%9C%E7%94%A8%E6%88%B7%E7%AE%A1%E7%90%86%E7%B3%BB%E7%BB%9F_%E4%BB%BB%E6%84%8F%E6%96%87%E4%BB%B6%E8%AF%BB%E5%8F%96%E6%BC%8F%E6%B4%9E/ - () https://syst1m.cn/2024/01/22/U%E9%AA%8C%E8%AF%81%E7%BD%91%E7%BB%9C%E7%94%A8%E6%88%B7%E7%AE%A1%E7%90%86%E7%B3%BB%E7%BB%9F_%E4%BB%BB%E6%84%8F%E6%96%87%E4%BB%B6%E8%AF%BB%E5%8F%96%E6%BC%8F%E6%B4%9E/ -

15 Nov 2024, 20:35

Type Values Removed Values Added
CWE CWE-922
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 5.3
Summary
  • (es) Un problema en uverif v.2.0 permite que un atacante remoto obtenga información confidencial.

28 Feb 2024, 23:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-02-28 23:15

Updated : 2025-05-08 22:58

NVD link : CVE-2024-26559

Mitre link : CVE-2024-26559

CVE.ORG link : CVE-2024-26559

JSON object : View

Products Affected

dagg

  • uverif
CWE
CWE-922

Insecure Storage of Sensitive Information