CVE-2024-6400

EPSS 0.61%
Veröffentlicht 04.10.2024 12:15:12
Zuletzt bearbeitet 03.06.2026 14:16:29
Quelle iletisim@usom.gov.tr
CVE-Watchlists
Login
Unerledigt
Login

Cleartext Storage of Username and Password in Finrota's Netahsilat

Cleartext Storage of Sensitive Information, Exposure of Sensitive Information Through Data Queries vulnerability in Finrota Netahsilat allows Retrieve Embedded Sensitive Data, Authentication Bypass, IMAP/SMTP Command Injection, Collect Data from Common Resource Locations.


This issue solved in versions 1.21.10, 1.23.01, 1.23.08, 1.23.11 and 1.24.03.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 5

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Finrota ≫ Finrota Version < 1.21.10

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.61%	0.445

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
iletisim@usom.gov.tr	8.2	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:L/VA:L/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-202 Exposure of Sensitive Information Through Data Queries

When trying to keep information confidential, an attacker can often infer some of the information by using statistics.

CWE-312 Cleartext Storage of Sensitive Information

The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

https://www.usom.gov.tr/bildirim/tr-24-1611

Third Party Advisory

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1611

https://nvd.nist.gov/vuln/detail/CVE-2024-6400

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-6400

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-6400

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-6400