- Description
- A vulnerability classified as critical was found in Xiongmai AHB7804R-MH-V2, AHB8004T-GL, AHB8008T-GL, AHB7004T-GS-V3, AHB7004T-MHV2, AHB8032F-LME and XM530_R80X30-PQ_8M. Affected by this vulnerability is an unknown functionality of the component Sofia Service. The manipulation with the input ff00000000000000000000000000f103250000007b202252657422203a203130302c202253657373696f6e494422203a202230783022207d0a leads to improper access controls. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-260605 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
- Source
- cna@vuldb.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
CVSS 2.0
- Type
- Secondary
- Base score
- 10
- Impact score
- 10
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:C/A:C
- cna@vuldb.com
- CWE-284
- Hype score
- Not currently trending
November 2024's Top 30 destination ports in the NICTER darknet, ranked by packet volume. 34567/TCP (Xiongmai DVR API) - Ongoing scans since October, targeting CVE-2024-3765. 3128/TCP is the default port for Squid proxy, 8088/TCP for Hadoop YARN ResourceManager. https://t.co/Wq3
@nicter_jp
17 Dec 2024
2049 Impressions
15 Retweets
23 Likes
2 Bookmarks
0 Replies
2 Quotes
October 2024’s Top 30 destination ports in the NICTER darknet, ranked by packet volume: 34567/TCP (rank 9) is used by the Xiongmai DVR API, with activity involving CVE-2024-3765. 60023/TCP (rank 28), an alternative Telnet port, rose in scans from Pfcloud UG IPs (AS51396). https:/
@nicter_jp
15 Nov 2024
1390 Impressions
9 Retweets
7 Likes
2 Bookmarks
0 Replies
0 Quotes