CVE-2024-25545 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.8 HIGH	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
mitre	CNA	---				---
CISA-ADP	ADP	7.8 HIGH	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVE	ADP	---				---

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: 8%

Common Weakness Enumeration

CWE-358 - Improperly Implemented Security Check for Standard
The software does not implement or incorrectly implements one or more security-relevant checks as specified by the design of a standardized algorithm, protocol, or technique.

References

https://gist.github.com/khronokernel/b68709335aa097752423f5d6844c3aa3

https://www.weavehelp.com/hc/en-us/articles/360060696152-Download-the-Weave-Desktop-App

https://gist.github.com/khronokernel/b68709335aa097752423f5d6844c3aa3

https://www.weavehelp.com/hc/en-us/articles/360060696152-Download-the-Weave-Desktop-App