Vulnerability Details CVE-2024-22388
Certain configuration available in the communication channel for encoders could expose sensitive data when reader configuration cards are programmed. This data could include credential and device administration keys.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 11.8%
CVSS Severity
CVSS v3 Score 5.9
References
Products affected by CVE-2024-22388
-
cpe:2.3:h:hidglobal:iclass_se_cp1000_encoder:-
-
cpe:2.3:h:hidglobal:iclass_se_processors:-
-
cpe:2.3:h:hidglobal:iclass_se_reader_modules:-
-
cpe:2.3:h:hidglobal:iclass_se_readers:-
-
cpe:2.3:h:hidglobal:omnikey_5023:-
-
cpe:2.3:h:hidglobal:omnikey_5027:-
-
cpe:2.3:h:hidglobal:omnikey_5127ck:-
-
cpe:2.3:h:hidglobal:omnikey_5427ck:-
-
cpe:2.3:o:hidglobal:iclass_se_cp1000_encoder_firmware:*
-
cpe:2.3:o:hidglobal:iclass_se_processors_firmware:*
-
cpe:2.3:o:hidglobal:iclass_se_reader_modules_firmware:*
-
cpe:2.3:o:hidglobal:iclass_se_readers_firmware:*
-
cpe:2.3:o:hidglobal:omnikey_5023_firmware:-
-
cpe:2.3:o:hidglobal:omnikey_5027_firmware:-
-
cpe:2.3:o:hidglobal:omnikey_5127ck_firmware:-
-
cpe:2.3:o:hidglobal:omnikey_5427ck_firmware:-