CVE-2024-1224

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Mar 6, 2024

CWE ID 326

Summary

CVE-2024-1224 is a newly disclosed vulnerability affecting USB Pratirodh software. The weakness lies in the use of the outdated SHA1 cryptographic hash algorithm in the user login component. A local attacker with administrative privileges can exploit this vulnerability and gain access to the USB Pratirodh password on the targeted system. Successfully exploiting this flaw grants the attacker control over the application, enabling them to modify access controls for registered users or devices on the affected system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uZ7Sz2
https://www.cve.org/CVERecord?id=CVE-2024-1224
https://nvd.nist.gov/vuln/detail/CVE-2024-1224

Back to Vulnerability Database

CVE-2024-1224

CVSS 3.1 Score 7.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations