CVE-2024-13947

HIGH Year: 2024
CVSS v3 Score
6.0
Medium
Weakness Type
CWE-863
View all →

Vulnerability Description

Device commissioning parameters in ASPECT may be modified by an external source if administrative credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.*; NEXUS Series: through 3.*; MATRIX Series: through 3.*.

Related Vulnerabilities

CVE-2018-15468

MEDIUM
CVSS:6.0(Medium)

An issue was discovered in Xen through 4.11.x. The DEBUGCTL MSR contains several debugging features, some of which virtualise cleanly, but some do not. In particular, Branch Trace Store is not virtual...

CWE-8632018

CVE-2022-27608

MEDIUM
CVSS:6.0(Medium)

Forcepoint One Endpoint prior to version 22.01 installed on Microsoft Windows is vulnerable to registry key tampering by users with Administrator privileges. This could result in a user disabling anti...

CWE-8632022

CVE-2022-27609

MEDIUM
CVSS:6.0(Medium)

Forcepoint One Endpoint prior to version 22.01 installed on Microsoft Windows does not provide sufficient anti-tampering protection of services by users with Administrator privileges. This could resul...

CWE-8632022

CVE-2019-11724

MEDIUM
CVSS:6.1(Medium)

Application permissions give additional remote troubleshooting permission to the site input.mozilla.org, which has been retired and now redirects to another site. This additional permission is unneces...

CWE-8632019

CVE-2019-25017

MEDIUM
CVSS:5.9(Medium)

An issue was discovered in rcp in MIT krb5-appl through 1.0.3. Due to the rcp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, th...

CWE-8632019

CVE-2021-20290

MEDIUM
CVSS:6.1(Medium)

An improper authorization handling flaw was found in Foreman. The OpenSCAP plugin for the smart-proxy allows foreman clients to execute actions that should be limited to the Foreman Server. This flaw ...

CWE-8632021