9.8критическая
CVE-2024-43692
Описание
An attacker can directly request the ProGauge MAGLINK LX CONSOLE
resource sub page with full privileges by requesting the URL directly.
Затрагиваемое ПО
Doverfuelingsolutions Progauge maglink lx console firmwareDoverfuelingsolutions Progauge maglink lx consoleDoverfuelingsolutions Progauge maglink lx4 console firmwareDoverfuelingsolutions Progauge maglink lx4 console
CVSS
| Балл | 9.8 — критическая |
| Вектор | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Источники
https://www.cisa.gov/news-events/ics-advisories/icsa-24-268-04