9.8
CVE-2024-5960
- EPSS 0.43%
- Veröffentlicht 18.09.2024 15:15:18
- Zuletzt bearbeitet 03.06.2026 14:16:29
- Quelle iletisim@usom.gov.tr
- CVE-Watchlists
- Unerledigt
LoginPlaintext Storage of a Password in Eliz Software's Panel
Plaintext Storage of a Password vulnerability in Eliz Software Panel allows : Use of Known Domain Credentials. This issue affects Panel: before v2.3.24.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Elizsoftware ≫ Panel Version < 2.3.24
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.43% | 0.346 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| iletisim@usom.gov.tr | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
CWE-256 Plaintext Storage of a Password
Storing a password in plaintext may result in a system compromise.
https://www.usom.gov.tr/bildirim/tr-24-1497
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1497