We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-39771



Assignerjpcert
Reserved2024-08-15
Published2024-08-28
Updated2024-10-28

Description

QBiC CLOUD CC-2L v1.1.30 and earlier and Safie One v1.8.2 and earlier do not properly validate certificates, which may allow a network-adjacent unauthenticated attacker to obtain and/or alter communications of the affected product via a man-in-the-middle attack.

Product status

v1.1.30 and earlier
affected

v1.8.2 and earlier
affected

References

https://safie.jp/information/post_6933/

https://jvn.jp/en/jp/JVN83440451/

cve.org CVE-2024-39771

nvd.nist.gov CVE-2024-39771

Download JSON

Share this page
https://cve.threatint.com
Subscribe to our newsletter to learn more about our work.