CVE-2024-38279

June 13, 2024, 6:35 p.m.

Tags

ics-cert@hq.dhs.gov
CWE-288
2024-06-13
CVE-2024-38279

Product(s) Impacted

UNKNOWN

Description

The affected product is vulnerable to an attacker modifying the bootloader by using custom arguments to bypass authentication and gain access to the file system and obtain password hashes.

Weaknesses

Date

Published: June 13, 2024, 5:15 p.m.

Last Modified: June 13, 2024, 6:35 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

ics-cert@hq.dhs.gov

References

https://www.cisa.gov/news-events/ics-advisories/icsa-24-165-19
ics-cert@hq.dhs.gov