mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-30 10:10:41 +00:00
36 lines
1.0 KiB
JSON
36 lines
1.0 KiB
JSON
|
{
|
||
|
|
"id": "CVE-2024-2422",
|
||
|
|
"sourceIdentifier": "productsecurity@carrier.com",
|
||
|
|
"published": "2024-05-30T18:15:09.367",
|
||
|
|
"lastModified": "2024-05-30T18:18:58.870",
|
||
|
|
"vulnStatus": "Awaiting Analysis",
|
||
|
|
"descriptions": [
|
||
|
|
{
|
||
|
|
"lang": "en",
|
||
|
|
"value": "LenelS2 NetBox access control and event monitoring system was discovered to contain an authenticated RCE in versions prior to and including 5.6.1, which allows an attacker to execute malicious commands."
|
||
|
|
}
|
||
|
|
],
|
||
|
|
"metrics": {},
|
||
|
|
"weaknesses": [
|
||
|
|
{
|
||
|
|
"source": "productsecurity@carrier.com",
|
||
|
|
"type": "Secondary",
|
||
|
|
"description": [
|
||
|
|
{
|
||
|
|
"lang": "en",
|
||
|
|
"value": "CWE-88"
|
||
|
|
}
|
||
|
|
]
|
||
|
|
}
|
||
|
|
],
|
||
|
|
"references": [
|
||
|
|
{
|
||
|
|
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-151-01",
|
||
|
|
"source": "productsecurity@carrier.com"
|
||
|
|
},
|
||
|
|
{
|
||
|
|
"url": "https://www.corporate.carrier.com/Images/CARR-PSA-2024-01-NetBox_tcm558-227956.pdf",
|
||
|
|
"source": "productsecurity@carrier.com"
|
||
|
|
}
|
||
|
|
]
|
||
|
|
}
|