Back

CVE-2024-33470

May 24, 2024, 6:09 p.m.

Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.

Products

AVTECH Room Alert 4E

  • 4.4.0

Source

cve@mitre.org

Tags

cve@mitre.org
2024-05-24
CVE-2024-33470

CVE-2024-33470 details

Published : May 24, 2024, 3:15 p.m.
Last Modified : May 24, 2024, 6:09 p.m.

Description

An issue in the SMTP Email Settings of AVTECH Room Alert 4E v4.4.0 allows attackers to gain access to credentials in plaintext via a passback attack. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description

References

URL Source
https://avtech.com/articles/27443/security-advisory-smtp-password-disclosure-in-dom/ cve@mitre.org
This website uses the NVD API, but is not approved or certified by it.