How severe is CVE-2024-10772?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.8 out of 10.

What type of vulnerability is CVE-2024-10772?

This is classified as CWE-649, which is a common weakness in software security.

CVE-2024-10772

HIGH Year: 2024

CVSS v3 Score

8.8

High

Weakness Type

CWE-649

View all →

Vulnerability Description

Since the firmware update is not validated, an attacker can install modified firmware on the device. This has a high impact on the availabilty, integrity and confidentiality up to the complete compromise of the device.

CVE-2010-3300

MEDIUM

CVSS:5.9(Medium)

It was found that all OWASP ESAPI for Java up to version 2.0 RC2 are vulnerable to padding oracle attacks.

CWE-6492010

CVE-2019-3730

MEDIUM

CVSS:5.9(Medium)

RSA BSAFE Micro Edition Suite versions prior to 4.1.6.3 (in 4.1.x) and prior to 4.4 (in 4.2.x and 4.3.x), are vulnerable to an Information Exposure Through an Error Message vulnerability, also known a...

CWE-6492019

CVE-2024-36279

MEDIUM

CVSS:5.3(Medium)

Reliance on obfuscation or encryption of security-relevant inputs without integrity checking issue exists in "FreeFrom - the nostr client" App versions prior to 1.3.5 for Android and iOS. If this vuln...

CWE-6492024

CVE-2024-10772

Vulnerability Description

Related Vulnerabilities

CVE-2010-3300

CVE-2019-3730

CVE-2024-36279