2024-06-24 10:03:11 +00:00
{
"id" : "CVE-2024-36497" ,
"sourceIdentifier" : "551230f0-3615-47bd-b7cc-93e92e730bbf" ,
"published" : "2024-06-24T09:15:09.973" ,
2024-06-25 08:03:12 +00:00
"lastModified" : "2024-06-25T06:15:11.513" ,
2024-06-24 14:03:13 +00:00
"vulnStatus" : "Awaiting Analysis" ,
2024-06-24 10:03:11 +00:00
"descriptions" : [
{
"lang" : "en" ,
"value" : "The decrypted configuration file contains the password in cleartext \nwhich is used to configure WINSelect. It can be used to remove the \nexisting restrictions and disable WINSelect entirely."
}
] ,
"metrics" : { } ,
"weaknesses" : [
{
"source" : "551230f0-3615-47bd-b7cc-93e92e730bbf" ,
"type" : "Secondary" ,
"description" : [
{
"lang" : "en" ,
"value" : "CWE-312"
}
]
}
] ,
"references" : [
2024-06-25 08:03:12 +00:00
{
"url" : "http://seclists.org/fulldisclosure/2024/Jun/12" ,
"source" : "551230f0-3615-47bd-b7cc-93e92e730bbf"
} ,
2024-06-24 10:03:11 +00:00
{
"url" : "https://r.sec-consult.com/winselect" ,
"source" : "551230f0-3615-47bd-b7cc-93e92e730bbf"
} ,
{
"url" : "https://www.faronics.com/en-uk/document-library/document/winselect-standard-release-notes" ,
"source" : "551230f0-3615-47bd-b7cc-93e92e730bbf"
}
]
}
