Vulnerability Details CVE-2024-50618
A Use of Single-factor Authentication vulnerability in the Authentication component of CIPPlanner CIPAce before 9.17 allows attackers to bypass a protection mechanism. When the system is configured to allow login with internal accounts, an attacker can possibly obtain full authentication if the secret in a single-factor authentication scheme gets compromised.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 10.8%
CVSS Severity
CVSS v3 Score 4.3
Products affected by CVE-2024-50618
-
cpe:2.3:a:cipplanner:cipace:-
-
cpe:2.3:a:cipplanner:cipace:6.80
-
cpe:2.3:a:cipplanner:cipace:9.1