CVE-2024-9043 CRITICAL

CVE-2024-9043: Cellopoint Secure Email Gateway - Buffer Overflow

Vendor Cellopoint
Product Secure Email Gateway
Weakness CWE-121
Published September 20, 2024
Last update September 20, 2024

CVSS base score

9.8/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Secure Email Gateway from Cellopoint has Buffer Overflow Vulnerability in authentication process. Remote unauthenticated attackers can send crafted packets to crash the process, thereby bypassing authentication and obtaining system administrator privileges.

Key dates

02Disclosure timeline

September 20, 2024 CVE published
September 20, 2024 Record updated