CVE-2024-3741

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Apr 18, 2024

Updated: May 28, 2024

CWE ID 302

Summary

CVE-2024-3741 is a newly disclosed vulnerability that affects Electrolink transmitters. The issue involves an authentication bypass flaw in the login cookie, allowing unauthorized access. An attacker can manipulate the cookie with a value other than 'NO' and gain full system access. This vulnerability poses a serious threat and requires immediate attention from Electrolink and its users to implement appropriate security measures.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vWwmlA
https://www.cve.org/CVERecord?id=CVE-2024-3741
https://nvd.nist.gov/vuln/detail/CVE-2024-3741

Back to Vulnerability Database

CVE-2024-3741

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations