Sensitive Information Exposed via Incorrect Access Control in Teldat M1 v11.00.05.50.01
CVE-2024-36829

7.5HIGH

Key Information:

Vendor: Teldat
Vendor: CVE Published:; 26 June 2024

What is CVE-2024-36829?

The vulnerability involves improper access controls in Teldat M1, particularly affecting version 11.00.05.50.01. This flaw allows attackers to exploit the system through specially crafted query strings, potentially granting unauthorized access to sensitive information. Organizations using vulnerable versions of Teldat M1 should review their security measures and consider implementing patches or updates to mitigate this issue to protect against potential data breaches.

References

https://gist.github.com/MILPDS/96843ccf7369ec1da643b7d6e2...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 26, 2024

CVE-2024-36829 Data

JSON