CVE-2024-3013 | FLIR AX8 up to 1.46.16 User Registration test_login.php improper authorization

Inserito da Angelo Barbosa | Mar 27, 2024 | CVE

A vulnerability was found in FLIR AX8 up to 1.46.16. It has been rated as critical. This issue affects some unknown processing of the file /tools/test_login.php?action=register of the component User Registration. The manipulation leads to improper authorization.

The identification of this vulnerability is CVE-2024-3013. The attack may be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-3013 | FLIR AX8 up to 1.46.16 User Registration test_login.php improper authorization

Post correlati

CVE-2024-21740 | Artery AT32F415CBT7/AT32F421C8T7 access control

CVE-2023-32424 | Apple watchOS Kernel Memory memory corruption

CVE-2022-48703 | Linux Kernel up to 5.19.8 kmemdup null pointer dereference (dae42083b045/7931e28098a4)

CVE-2024-39324 | aimeos ai-admin-graphql prior 2022.10.10/2023.10.6/2024.4.2 insufficient granularity of access control