CVE-2024-53356 – EasyVirt DCScope & CO2Scope Privilege Escalation Weak Encryption

The following table lists the changes that have been made to the CVE-2024-53356 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics.

  • CVE Modified by 134c704f-9b21-4f2e-91b3-4a467353bcc0

    Feb. 03, 2025

    Action Type Old Value New Value
    Added CVSS V3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    Added CWE CWE-798
    Added Reference https://github.com/Elymaro/CVE/blob/main/EasyVirt/CVE-2024-53356.md
  • New CVE Received by [email protected]

    Jan. 31, 2025

    Action Type Old Value New Value
    Added Description EasyVirt DCScope <=8.6.0 and CO2Scope <=1.3.0 are vulnerable to privilege escalation as the password token suffers from weak encryption making it possible to brute-force the password token.
    Added Reference https://github.com/Elymaro/CVE/blob/main/EasyVirt/CVE-2024-53356.md

نوشته های مشابه

CVE-2024-53320 – Qualisys C++ SDK Buffer Overflow Vulnerability

CVE-2024-57434 – Macrozheng Mall-Tiny Default Test User Super Admin Account Creation Vulnerability

CVE-2024-12859 – BoomBox Theme Extensions WordPress Local File Inclusionцами Vulnerability

CVE-2024-57968 – Advantive VeraCore Unrestricted File Upload Vulnerability