CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-31203
https://notcve.org/view.php?id=CVE-2024-31203
31 Jul 2024 — A “CWE-121: Stack-based Buffer Overflow” in the wd210std.dll dynamic library packaged with the ThermoscanIP installer allows a local attacker to possibly trigger a Denial-of-Service (DoS) condition on the target component. • https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2024-31203 • CWE-121: Stack-based Buffer Overflow •
CVSS: 8.4EPSS: 0%CPEs: 2EXPL: 0CVE-2024-31202
https://notcve.org/view.php?id=CVE-2024-31202
31 Jul 2024 — A “CWE-732: Incorrect Permission Assignment for Critical Resource” in the ThermoscanIP installation folder allows a local attacker to perform a Local Privilege Escalation. • https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2024-31202 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 6.7EPSS: 0%CPEs: 2EXPL: 0CVE-2024-31201
https://notcve.org/view.php?id=CVE-2024-31201
31 Jul 2024 — A “CWE-428: Unquoted Search Path or Element” affects the ThermoscanIP_Scrutation service. Such misconfiguration could be abused in scenarios where incorrect permissions were assigned to the C:\ path to attempt a privilege escalation on the local machine. • https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2024-31201 • CWE-428: Unquoted Search Path or Element •