CVE-2024-1302

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Mar 12, 2024

CWE ID 200

Summary

CVE-2024-1302 is an information exposure vulnerability affecting Badger Meter Monitool versions up to 4.6.3 and earlier. This issue allows a local attacker to manipulate the application's file parameter, causing it to generate a log file containing all sensitive information, including database credentials. Successful exploitation of this vulnerability could lead to unauthorized access to critical data, potentially resulting in significant security risks. To mitigate this threat, it is recommended that users upgrade to the latest version of the software as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ubr9EL
https://www.cve.org/CVERecord?id=CVE-2024-1302
https://nvd.nist.gov/vuln/detail/CVE-2024-1302

Back to Vulnerability Database

CVE-2024-1302

CVSS 3.1 Score 7.3 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations