Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-2882

June 27, 2024, 7:25 p.m.

Tags

CWE-862
ics-cert@hq.dhs.gov
2024-06-27
CVE-2024-2882

Product(s) Impacted

UNKNOWN

Description

SDG Technologies PnPSCADA allows a remote attacker to attach various entities without requiring system authentication. This breach could potentially lead to unauthorized control, data manipulation, and access to sensitive information within the SCADA system.

Weaknesses

CWE-862
Missing Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

CWE ID: 862

Date

Published: June 27, 2024, 7:15 p.m.

Last Modified: June 27, 2024, 7:25 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

ics-cert@hq.dhs.gov

References

https://www.cisa.gov/ ics-cert@hq.dhs.gov