Authentication Bypass Vulnerability in Nedap Librix Ecoreader
CVE-2024-12757

8.8HIGH

Key Information:

Vendor: Nedap Librix
Status: Ecoreader
Vendor: CVE Published:; 17 January 2025

🔔 Create Nedap Librix Vulnerability Alert

What is CVE-2024-12757?

An authentication bypass vulnerability has been identified in Nedap's Librix Ecoreader, enabling unauthenticated attackers to gain access to critical functions. This flaw poses a significant risk, as it may allow adversaries to execute malicious code within the system, potentially leading to unauthorized control and data compromise.

Affected Version(s)

Ecoreader all versions

References

https://www.cisa.gov/news-events/ics-advisories/icsa-25-0...

CVSS V4

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 17, 2025
Vulnerability Reserved
Dec 18, 2024

Credit

Prajitesh Singh of Cyble reported this vulnerability to CISA.

CVE-2024-12757 Data

JSON