CVE-2024-54013

EPSS 0.16%
Veröffentlicht 28.04.2026 07:06:17
Zuletzt bearbeitet 28.04.2026 20:11:56
Quelle fc9afe74-3f80-4fb7-a313-e6f036
CVE-Watchlists
Login
Unerledigt
Login

Authentication Bypass

Penetration Testing engineers at Amazon have identified a security flaw related to request handling in the web server component that could, under certain conditions, lead to unintended access to protected functions. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

CNA 1 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerHanwha Vision

≫

Produkt QND-8080R

Default Statusunaffected

Version 0

Version < 2.24.00

Status affected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.16%	0.053

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
fc9afe74-3f80-4fb7-a313-e6f036a89882	8.7	0	0	CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-306 Missing Authentication for Critical Function

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

https://www.hanwhavision.com/wp-content/uploads/2026/04/Camera-Vulnerability-ReportCVE-2024-5401154013.pdf

https://nvd.nist.gov/vuln/detail/CVE-2024-54013

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-54013

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-54013

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-54013