Awaiting Analysis
CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Products
LenelS2 NetBox
- before 5.6.1
Source
productsecurity@carrier.com
Tags
CVE-2024-2421 details
Published : May 30, 2024, 6:15 p.m.
Last Modified : May 30, 2024, 6:18 p.m.
Last Modified : May 30, 2024, 6:18 p.m.
Description
LenelS2 NetBox access control and event monitoring system was discovered to contain an unauthenticated RCE in versions prior to and including 5.6.1, which allows an attacker to execute malicious commands with elevated permissions.
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|
References
URL | Source |
---|---|
https://www.cisa.gov/news-events/ics-advisories/icsa-24-151-01 | productsecurity@carrier.com |
https://www.corporate.carrier.com/Images/CARR-PSA-2024-01-NetBox_tcm558-227956.pdf | productsecurity@carrier.com |
This website uses the NVD API, but is not approved or certified by it.