CVE-2024-3016 | NEC ITK-6DGS-1 TEL up to 5.3.4.4/5.6.0.20 Setting backdoor

A vulnerability classified as critical has been found in NEC ITK-6DGS-1 TEL, ITK-32LCGS-1 TEL, ITK-32TCGS-1 TEL, ITK-6D-1TEL, ITK-12D-1TEL, ITK-8LCX-1TEL, ITK-8TCGX-1TEL, ITK-6DGS-1A TEL, ITK-32LCGS-1A TEL, ITK-32TCGS-1A TEL, ITK-6DGS-1P TEL, ITK-32LCGS-1P TEL, ITK-32TCGS-1P TEL, ITK-6D-1PTEL, ITK-12D-1PTEL, ITK-6DG-1PTEL, ITK-12DG-1PTEL, ITK-8LCX-1PTEL, ITK-8LCG-1PTEL, ITK-32LCG-1PTEL, ITK-8TCGX-1PTEL and ITK-32TCG-1PTEL up to 5.3.4.4/5.6.0.20. This affects an unknown part of the component Setting Handler. The manipulation leads to backdoor.

This vulnerability is uniquely identified as CVE-2024-3016. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2024-3016 | NEC ITK-6DGS-1 TEL up to 5.3.4.4/5.6.0.20 Setting backdoor

Related Posts

CVE-2024-41380 | microweber 2.0.16 add_tagging_tagged.php cross site scripting (Issue 1111)

CVE-2024-23998 | goanother Another Redis Desktop Manager 1.6.1 Setting.vue cross site scripting

CVE-2024-4212 | Themesflat Addons for Elementor Plugin up to 2.1.1 on WordPress Widgets cross site scripting

CVE-2024-5339 | Ruijie RG-UAC up to 20240516 online_check.php peernode os command injection