VYPR
Medium severity4.3NVD Advisory· Published Nov 29, 2024· Updated Jun 17, 2026

CVE-2024-11014

CVE-2024-11014

Description

Cross-site request forgery (CSRF) vulnerability in NEC Corporation UNIVERGE IX from Ver9.2 to Ver10.10.21, for Ver10.8 up to Ver10.8.27 and for Ver10.9 up to Ver10.9.14 allows a attacker to hijack the authentication of screens on the device via the management interface.

Affected products

1
  • NEC/UNIVERGE IXllm-create
    Range: Ver9.2 to Ver10.10.21, Ver10.8 up to Ver10.8.27, Ver10.9 up to Ver10.9.14

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.