Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-2421

May 30, 2024, 6:18 p.m.

Tags

CWE-78
2024-05-30
productsecurity@carrier.com
CVE-2024-2421

Product(s) Impacted

LenelS2 NetBox

  • before 5.6.1

Description

LenelS2 NetBox access control and event monitoring system was discovered to contain an unauthenticated RCE in versions prior to and including 5.6.1, which allows an attacker to execute malicious commands with elevated permissions.

Weaknesses

Date

Published: May 30, 2024, 6:15 p.m.

Last Modified: May 30, 2024, 6:18 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

productsecurity@carrier.com

References

https://www.cisa.gov/ productsecurity@carrier.com
https://www.corporate.carrier.com/ productsecurity@carrier.com