CVE-2024-5731

Summary

A vulnerability in the IPS Manager, Central Manager, and Local Manager communication workflow allows an attacker to control the destination of a request by manipulating the parameter, thereby leveraging sensitive information.

Affected Software

VendorProductVersion RangeStatus
TrellixIntrusion Prevention System (IPS) ManagerPrior to 11.1.xaffected

Weaknesses

  • CWE-311: CWE-311: Missing encryption of sensitive data

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References