Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-2420

May 30, 2024, 6:18 p.m.

Tags

CWE-259
2024-05-30
CVE-2024-2420
productsecurity@carrier.com

Product(s) Impacted

LenelS2 NetBox

  • before 5.6.1

Description

LenelS2 NetBox access control and event monitoring system was discovered to contain Hardcoded Credentials in versions prior to and including 5.6.1 which allows an attacker to bypass authentication requirements.

Weaknesses

Date

Published: May 30, 2024, 6:15 p.m.

Last Modified: May 30, 2024, 6:18 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

productsecurity@carrier.com

References

https://www.cisa.gov/ productsecurity@carrier.com
https://www.corporate.carrier.com/ productsecurity@carrier.com