CVE-2024-51720

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-51720
An insufficient entropy vulnerability in the SecuSUITE Secure Client Authentication (SCA) Server of SecuSUITE versions 5.0.420 and earlier could allow an attacker to potentially enroll an attacker-controlled device to the victim’s account and telephone number.

4.8 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.2 / Impact : 2.5

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://support.blackberry.com/pkb/s/article/140220
Configurations

No configuration.

History

No history.

Information

Published : 2024-11-12 18:15

Updated : 2024-11-13 17:01

NVD link : CVE-2024-51720

Mitre link : CVE-2024-51720

CVE.ORG link : CVE-2024-51720

JSON object : View

Products Affected

No product.

CWE
CWE-307

Improper Restriction of Excessive Authentication Attempts