Medium severity4.3NVD Advisory· Published Nov 29, 2024· Updated Jun 17, 2026
CVE-2024-11014
CVE-2024-11014
Description
Cross-site request forgery (CSRF) vulnerability in NEC Corporation UNIVERGE IX from Ver9.2 to Ver10.10.21, for Ver10.8 up to Ver10.8.27 and for Ver10.9 up to Ver10.9.14 allows a attacker to hijack the authentication of screens on the device via the management interface.
Affected products
1- Range: Ver9.2 to Ver10.10.21, Ver10.8 up to Ver10.8.27, Ver10.9 up to Ver10.9.14
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.