We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-22388

Insecure Default Initialization of Resource in HID Global



Assignericscert
Reserved2024-01-25
Published2024-02-06
Updated2024-10-17

Description

Certain configuration available in the communication channel for encoders could expose sensitive data when reader configuration cards are programmed. This data could include credential and device administration keys.



MEDIUM: 5.9CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

Product status

Default status
unaffected

All
affected

Default status
unaffected

All
affected

Default status
unaffected

All
affected

Default status
unaffected

All
affected

Default status
unaffected

All
affected

Default status
unaffected

All
affected

Default status
unaffected

All
affected

Default status
unaffected

All
affected

Credits

HID Global reported this vulnerability to CISA. finder

References

https://www.cisa.gov/news-events/ics-advisories/icsa-24-037-01

https://support.hidglobal.com/

cve.org CVE-2024-22388

nvd.nist.gov CVE-2024-22388

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-22388
Subscribe to our newsletter to learn more about our work.