CVE-2024-38284

June 13, 2024, 6:35 p.m.

Tags

ics-cert@hq.dhs.gov
CWE-294
2024-06-13
CVE-2024-38284

Product(s) Impacted

UNKNOWN

Description

Transmitted data is logged between the device and the backend service. An attacker could use these logs to perform a replay attack to replicate calls.

Weaknesses

Date

Published: June 13, 2024, 6:15 p.m.

Last Modified: June 13, 2024, 6:35 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

ics-cert@hq.dhs.gov

References

https://www.cisa.gov/news-events/ics-advisories/icsa-24-165-19
ics-cert@hq.dhs.gov