CVE-2024-32932

Summary

Under certain circumstances the web interface users credentials may be recovered by an authenticated user.

Affected Software

VendorProductVersion RangeStatus
Johnson ControlsAmerican Dynamics Illustra Essentials Gen 40 <= Illustra.Ess4.01.02.10.5982unaffected

Weaknesses

  • CWE-257: CWE-257: Storing Passwords in a Recoverable Format

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References