Firmware Vulnerability in CIRCUTOR Q-SMT Product by CIRCUTOR
CVE-2024-8888

7.5HIGH

Key Information:

Vendor: Circutor
Status: Q-smt Firmware
Vendor: CVE Published:; 18 September 2024

What is CVE-2024-8888?

A vulnerability exists in CIRCUTOR Q-SMT firmware version 1.0.4 that permits an attacker with network access to exploit the system. The issue arises due to the use of tokens for authentication that lack expiration dates, thereby allowing unauthorized users to access web applications without restrictions. Token theft may occur through various methods, including network captures or accessing locally stored web information, posing significant risks to data integrity and privacy.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://www.incibe.es/en/incibe-cert/notices/aviso-sci/mu...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 18, 2024

JSON

Circutor

What is CVE-2024-8888?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.