CVE-2024-10128

LOW

Topdata Inner Rep Plus WebServer 2.01 - Info Disclosure

Title source: llm

Description

A vulnerability was found in Topdata Inner Rep Plus WebServer 2.01. It has been rated as problematic. Affected by this issue is some unknown functionality of the file td.js.gz. The manipulation leads to risky cryptographic algorithm. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

References (3)

[Third Party Advisory, VDB Entry] https://vuldb.com/?id.280916

[Permissions Required, VDB Entry] https://vuldb.com/?ctiid.280916

[Exploit, Third Party Advisory, VDB Entry] https://vuldb.com/?submit.422604

Scores

CVSS v3 2.7

EPSS 0.0011

EPSS Percentile 29.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-327

Status published

Products (1)

topdata/inner_rep_plus 2.01

Published Oct 18, 2024

Tracked Since Feb 18, 2026