Vulnerability Details CVE-2024-1015
Remote command execution vulnerability in SE-elektronic GmbH E-DDC3.3 affecting versions 03.07.03 and higher. An attacker could send different commands from the operating system to the system via the web configuration functionality of the device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.021
EPSS Ranking 83.3%
CVSS Severity
CVSS v3 Score 9.8
References
- https://www.hackplayers.com/2024/01/cve-2024-1014-and-cve-2024-1015.html
- https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-se-elektronic-gmbh-products
- https://www.hackplayers.com/2024/01/cve-2024-1014-and-cve-2024-1015.html
- https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-se-elektronic-gmbh-products
Products affected by CVE-2024-1015
-
cpe:2.3:h:se-elektronic:e-ddc3.3:-
-
cpe:2.3:o:se-elektronic:e-ddc3.3_firmware:03.07.03