CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-1889

Cross-Site Request Forgery vulnerability in SMA Cluster Controller, affecting version 01.05.01.R. This vulnerability could allow an attacker to send a malicious link to an authenticated user to perform actions with these user permissions on the affected device.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 30.1%

CVSS Severity

CVSS v3 Score 8.8

References

https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-sma-products
https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-sma-products

Products affected by CVE-2024-1889

Sma » Clcon-10 » Version: N/A

cpe:2.3:h:sma:clcon-10:-
Sma » Clcon-S-10 » Version: N/A

cpe:2.3:h:sma:clcon-s-10:-
Sma » Clcon-10 Firmware » Version: 01.05.01.r

cpe:2.3:o:sma:clcon-10_firmware:01.05.01.r
Sma » Clcon-S-10 Firmware » Version: 01.05.01.r

cpe:2.3:o:sma:clcon-s-10_firmware:01.05.01.r

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-1889

Products

Pricing

Contact Us