CVE-2024-2420

{"id": "CVE-2024-2420", "metrics": {}, "published": "2024-05-30T18:15:09.070", "references": [{"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-151-01", "source": "productsecurity@carrier.com"}, {"url": "https://www.corporate.carrier.com/Images/CARR-PSA-2024-01-NetBox_tcm558-227956.pdf", "source": "productsecurity@carrier.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "productsecurity@carrier.com", "description": [{"lang": "en", "value": "CWE-259"}]}], "descriptions": [{"lang": "en", "value": "LenelS2 NetBox access control and event monitoring system was discovered to contain\u00a0Hardcoded Credentials in versions prior to and including 5.6.1 which allows an attacker to bypass authentication requirements."}], "lastModified": "2024-05-30T18:18:58.870", "sourceIdentifier": "productsecurity@carrier.com"}