Hard-coded Credentials Vulnerability Affects TNB Mobile Solutions' Cockpit Software
CVE-2024-6656

9.8CRITICAL

Key Information:

Vendor: Tnb Mobile Solutions
Status: Cockpit Software
Vendor: CVE Published:; 13 September 2024

🔔 Create Tnb Mobile Solutions Vulnerability Alert

What is CVE-2024-6656?

A vulnerability in TNB Mobile Solutions Cockpit Software, prior to version 2.13, involves the use of hard-coded credentials that can be exploited to read sensitive strings within an executable. This exposure poses significant risks to data integrity and confidentiality, as unauthorized access may allow attackers to compromise the affected systems and extract critical information.

Affected Version(s)

Cockpit Software 0

References

https://www.usom.gov.tr/bildirim/tr-24-1466

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 13, 2024
Vulnerability Reserved
Jul 10, 2024

Credit

Yusuf Kamil ÇAVUŞOĞLU

CVE-2024-6656 Data

JSON