← volver
CVE-2024-22247

CVE-2024-22247

CVSS 4.8 MEDIUMEPSS 0.2%CWE-287
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 4.8EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
02 abr 2024Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
VMware SD-WAN Edge contains a missing authentication and protection mechanism vulnerability. A malicious actor with physical access to the SD-WAN Edge appliance during activation can potentially exploit this vulnerability to access the BIOS configuration. In addition, the malicious actor may be able to exploit the default boot priority configured.
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H
Productos afectados
N/A · VMware SD-WAN Edge