cve/2024/CVE-2024-2377.md

### [CVE-2024-2377](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2377)
![](https://img.shields.io/static/v1?label=Product&message=SDM600&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-346%20Origin%20Validation%20Error&color=brighgreen)

### Description

A vulnerability exists in the too permissive HTTP response header web server settings of the SDM600. An attacker can take advantage of this and possibly carry out privileged actions and access sensitive information.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/fkie-cad/nvd-json-data-feeds
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`### [CVE-2024-2377](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2377)`
			`![](https://img.shields.io/static/v1?label=Product&message=SDM600&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-346%20Origin%20Validation%20Error&color=brighgreen)`

			`### Description`

			`A vulnerability exists in the too permissive HTTP response header web server settings of the SDM600. An attacker can take advantage of this and possibly carry out privileged actions and access sensitive information.`

			`### POC`

			`#### Reference`
			`No PoCs from references.`

			`#### Github`
			`- https://github.com/fkie-cad/nvd-json-data-feeds`