CVE-2024-6466

Summary

NEC Corporation's WebSAM DeploymentManager v6.0 to v6.80 allows an attacker to reset configurations or restart products via network with X-FRAME-OPTIONS is not specified.

Affected Software

VendorProductVersion RangeStatus
NEC CorporationWebSAM DeploymentManagerfrom v6.0 to v6.80affected

Weaknesses

  • CWE-1021: CWE-1021: Improper Restriction of Rendered UI Layers or Frames

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References