CVE-2024-6118 Vulnerability Details

  /     /     /  

CVE-2024-6118 Metadata Quick Info

CVE Published: 05/08/2024 | CVE Updated: 05/08/2024 | CVE Year: 2024
Source: ZUSO ART | Vendor: Hamastar Technology | Product: MeetingHub Paperless Meetings
Status : PUBLISHED

---

CVE-2024-6118 Description

A Plaintext Storage of a Password vulnerability in ebooknote function in Hamastar MeetingHub Paperless Meetings 2021 allows remote attackers to obtain the other users’ credentials and gain access to the product via an XML file.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID: CWE-256
CWE Name: CWE-256: Plaintext Storage of a Password
Source: Hamastar Technology

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).