Back

CVE-2024-5731

June 14, 2024, 2:15 p.m.

Received
CVE has been recently published to the CVE List and has been received by the NVD.

Products

UNKNOWN

Source

trellixpsirt@trellix.com

Tags

CWE-311
trellixpsirt@trellix.com
2024-06-14
CVE-2024-5731

CVE-2024-5731 details

Published : June 14, 2024, 2:15 p.m.
Last Modified : June 14, 2024, 2:15 p.m.

Description

A vulnerability in the IPS Manager, Central Manager, and Local Manager communication workflow allows an attacker to control the destination of a request by manipulating the parameter, thereby leveraging sensitive information.

CVSS Score

1 2 3 4 5 6.8 7 8 9 10

Weakness

Weakness Name Description

CVSS Data

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

Base Score

6.8

Exploitability Score

Impact Score

Base Severity

MEDIUM

Vector String : CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N

References

URL Source
https://thrive.trellix.com/s/article/000013623 trellixpsirt@trellix.com
This website uses the NVD API, but is not approved or certified by it.