CVE-2024-40117 - Incorrect access control in Solar-Log 1000 before v2.8.2 and build 52- 23.04.2013 allows attackers t

CVE-2024-40117

Summary

Incorrect access control in Solar-Log 1000 before v2.8.2 and build 52- 23.04.2013 allows attackers to obtain Administrative privileges via connecting to the web administration server.

References

https://github.com/nepenthe0320/cve_poc/blob/master/Solar-Log%201000%20-%20Incorrect%20Access%20Control
https://github.com/nepenthe0320/cve_poc/blob/master/CVE-2024-40117

Vulnerable Configurations

CVSS

Base:	None
Impact:
Exploitability:

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

01-08-2024 - 13:56

Published

26-07-2024 - 20:15

Last modified

01-08-2024 - 13:56