Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-31853


A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.11). During establishment of a https connection to the TLS server of a managed device, the affected application doesn't check the extended key usage attribute of that device's certificate. This could allow an attacker to execute an on-path network (MitM) attack.


Published

2025-07-08T11:15:23.997

Last Modified

2025-07-08T16:18:14.207

Status

Awaiting Analysis

Source

[email protected]

Severity

CVSSv3.1: 8.1 (HIGH)

Weaknesses
  • Type: Primary
    CWE-295

Affected Vendors & Products

-


References