Description

YMS VIS Pro is an information system for veterinary and food administration, veterinarians and farm. Due to a combination of improper method for system credentials generation and weak password policy, passwords can be easily guessed and enumerated through brute force attacks. Successful attacks can lead to unauthorised access and execution of operations based on assigned user permissions. This vulnerability affects VIS Pro in versions <= 3.3.0.6. This vulnerability has been mitigated by changes in authentication mechanisms and implementation of additional authentication layer and strong password policies.

INFO

Published Date :

2024-05-13T09:17:12.216Z

Last Modified :

2024-08-01T20:05:08.248Z

Source :

SK-CERT
AFFECTED PRODUCTS

The following products are affected by CVE-2024-3263 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-3263.

URL Resource
https://remediata.com/blog/cve-2024-3263-improper-authentication-in-yms-vis-pro/ cve-icon cve-icon cve-icon
https://www.svps.sk/vis/ cve-icon cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact