CVE Radar Logo
CVERadar
CVE Radar Logo
CVERadar

CVE-2024-32238

Medium Severity
SVRS
36/100
CVSSv3
NA/10
EPSS
0.83202/1

CVE-2024-32238: H3C ER8300G2-X router management system password can be accessed through the login interface due to Incorrect Access Control. This flaw allows unauthorized access to sensitive system controls. With a SOCRadar Vulnerability Risk Score (SVRS) of 36, the vulnerability is not considered critical, but it should still be addressed. Successful exploitation could allow attackers to reconfigure the router, intercept traffic, or even use it as a pivot point for further attacks within the network. While the CVSS score is 0, implying no immediate risk, the presence of "In The Wild" tag suggests that exploitation is possible. Timely patching is essential to prevent potential network compromise and maintain the security posture of the H3C ER8300G2-X router. This vulnerability highlights the need for robust access control mechanisms.

TAGS
In The Wild
VECTOR STRING
PUBLICATION DATE2024-04-22
LAST MODIFIED2024-07-03
Eye Icon
SOCRadar
AI Insight

Description

CVE-2024-32238 is a vulnerability with a CVSS score of 0, indicating a low severity level. However, SOCRadar's unique 'SOCRadar Vulnerability Risk Score' (SVRS) assigns it a score of 30, highlighting the potential for exploitation.

Key Insights

  • Active Exploitation: The vulnerability is actively exploited in the wild, posing an immediate threat to organizations.
  • Low CVSS Score: Despite the low CVSS score, the SVRS score of 30 indicates that the vulnerability may have significant consequences if exploited.
  • Unknown Description: The lack of a detailed description makes it challenging to fully understand the nature and impact of the vulnerability.
  • Threat Actors: Information on specific threat actors or APT groups actively exploiting this vulnerability is currently unavailable.

Mitigation Strategies

  • Apply Patches: As soon as a patch becomes available, apply it promptly to all affected systems.
  • Monitor Network Traffic: Implement network monitoring tools to detect and block suspicious activity that may indicate exploitation attempts.
  • Educate Users: Raise awareness among users about the vulnerability and encourage them to practice good cybersecurity hygiene.
  • Consider Additional Security Measures: Explore additional security measures, such as intrusion detection systems (IDS) or web application firewalls (WAF), to enhance protection.

Additional Information

If users have additional queries regarding this incident, they can use the 'Ask to Analyst' feature, contact SOCRadar directly, or open a support ticket for more information if necessary.

Indicators of Compromise

No IOCs found for this CVE

Exploits

No exploits found for this CVE

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence
Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.
CREATE FREE ACCOUNT
CVE Details
Access comprehensive CVE information instantly
Real-time Tracking
Subscribe to CVEs and get instant updates
Exploit Analysis
Monitor related APT groups and threats
IOC Tracking
Analyze and track CVE-related IOCs

News

CVE-2024-32238 | H3C ER8300G2-X Management System Page Login Interface access control
vuldb.com2024-04-22
CVE-2024-32238 | H3C ER8300G2-X Management System Page Login Interface access control | A vulnerability, which was classified as critical, was found in H3C ER8300G2-X. Affected is an unknown function of the component Management System Page Login Interface. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2024-32238. Access to the local network is required for this attack
cve-2024-32238
domains
urls
cves

Social Media

No tweets found for this CVE

Affected Software

No affected software found for this CVE

References

ReferenceLink
[email protected]https://github.com/asdfjkl11/CVE-2024-32238/issues/1
[email protected]https://www.h3c.com/cn/Products_And_Solution/InterConnect/Products/Routers/Products/Enterprise/ER/ER8300G2-X/

CWE Details

CWE IDCWE NameDescription
CWE-522Insufficiently Protected CredentialsThe product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence