CVE-2024-12398
HIGH
Published 2025-01-14T01:39:04.348Z
Actions:
CVSS Score
V3.1
8.8
/10
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score Metrics
Exploitability: N/A
Impact: N/A
EPSS Score
v2023.03.01
0.000
probability
of exploitation in the wild
There is a 0.0% chance that this vulnerability will be exploited in the wild within the next 30 days.
Updated: 2025-01-25
Exploit Probability
Percentile: 0.208
Higher than 20.8% of all CVEs
Attack Vector Metrics
Impact Metrics
Description
An improper privilege management vulnerability in the web management interface of the Zyxel WBE530 firmware versions through 7.00(ACLE.3) and WBE660S firmware versions through 6.70(ACGG.2) could allow an authenticated user with limited privileges to escalate their privileges to that of an administrator, enabling them to upload configuration files to a vulnerable device.
Available Exploits
No exploits available for this CVE.
Related News
Zyxel Urges Patch Application for Privilege Escalation Vulnerability (CVE-2024-12398)
Zyxel has issued an advisory for a newly identified security vulnerability, CVE-2024-12398, that affects multiple access points (AP) The post Zyxel Urges Patch Application for Privilege Escalation Vulnerability (CVE-2024-12398) appeared first on Cybersecurity News.
SecurityOnline.info
2025-01-14 02:45
Affected Products
Affected Versions:
Affected Versions:
Published: 2025-01-14T01:39:04.348Z
Last Modified: 2025-01-14T15:26:24.681Z
Copied to clipboard!