CVE-2024-1417

Published May 16, 2024

Last updated 6 months ago

CVSS high 7.8

Overview

Description
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in WatchGuard AuthPoint Password Manager on MacOS allows an a adversary with local access to execute code under the context of the AuthPoint Password Manager application. This issue affects AuthPoint Password Manager for MacOS versions before 1.0.6.
Source
5d1c2695-1a31-4499-88ae-e847036fd7e3
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
7.8
Impact score
5.9
Exploitability score
1.8
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity
HIGH

Weaknesses

5d1c2695-1a31-4499-88ae-e847036fd7e3
CWE-77

Social media

Hype score
Not currently trending

References