CVE-2024-45032

A vulnerability has been identified in Industrial Edge Management Pro (All versions < V1.9.5), Industrial Edge Management Virtual (All versions < V2.3.1-1). Affected components do not properly validate the device tokens. This could allow an unauthenticated remote attacker to impersonate other devices onboarded to the system.
Configurations

No configuration.

History

10 Sep 2024, 12:09

Type Values Removed Values Added
Summary
  • (es) Se ha identificado una vulnerabilidad en Industrial Edge Management Pro (todas las versiones anteriores a la V1.9.5) e Industrial Edge Management Virtual (todas las versiones anteriores a la V2.3.1-1). Los componentes afectados no validan correctamente los tokens de los dispositivos. Esto podrĂ­a permitir que un atacante remoto no autenticado se haga pasar por otros dispositivos incorporados al sistema.

10 Sep 2024, 10:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-10 10:15

Updated : 2024-09-10 12:09


NVD link : CVE-2024-45032

Mitre link : CVE-2024-45032

CVE.ORG link : CVE-2024-45032


JSON object : View

Products Affected

No product.

CWE
CWE-639

Authorization Bypass Through User-Controlled Key