CVE Catalog

CVE-2024-48787

CriticalCVSS 9.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.49%

38th percentile - higher than 38% of all known CVEs

Summary

A vulnerability in the Revic Ops application (us.revic.revicops) version 1.12.5 allows a remote attacker to obtain sensitive information through the firmware update process.

Risk Assessment

The organization is at risk of sensitive data leakage, which could be used for further attacks or compromise system security.

Recommendation

Immediately update the Revic Ops application to the latest available version and restrict access to the firmware update process.

Original NVD description (English source)

An issue in Revic Optics Revic Ops (us.revic.revicops) 1.12.5 allows a remote attacker to obtain sensitive information via the firmware update process.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS