Vulnerabilities > CVE-2024-38465 - Information Exposure Through Discrepancy vulnerability in Guoxinled Synthesis Image System

047910
CVSS 5.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
network
low complexity
guoxinled
CWE-203
NVD
Published: 2024-06-16
Updated: 2024-08-07

Summary

Shenzhen Guoxin Synthesis image system before 8.3.0 allows username enumeration because of the response discrepancy of incorrect versus error.

Vulnerable Configurations

Part Description Count
Application
Guoxinled
1

Common Weakness Enumeration (CWE)

References