Vulnerability Description
A vulnerability was discovered in the firmware builds after 8.0.2.3267 and prior to 8.1.3.1301 in CCX devices. A flaw in the firmware build process did not properly restrict access to a resource from an unauthorized actor.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | Poly Ccx 350 | >= 8.0.2.3267, < 8.1.3.1301 |
| Hp | Poly Ccx 400 | >= 8.0.2.3267, < 8.1.3.1301 |
| Hp | Poly Ccx 500 | >= 8.0.2.3267, < 8.1.3.1301 |
| Hp | Poly Ccx 505 | >= 8.0.2.3267, < 8.1.1301 |
| Hp | Poly Ccx 600 | >= 8.0.2.3267, < 8.1.3.1301 |
| Hp | Poly Ccx 700 | >= 8.0.2.3267, < 8.1.3.1301 |
Related Weaknesses (CWE)
References
- https://support.hp.com/us-en/document/ish_10388650-10388701-16/hpsbpy03929Vendor Advisory
- https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-003.tExploitThird Party Advisory
- https://support.hp.com/us-en/document/ish_10388650-10388701-16/hpsbpy03929Vendor Advisory
- https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-003.tExploitThird Party Advisory
FAQ
What is CVE-2024-3281?
CVE-2024-3281 is a vulnerability with a CVSS score of 8.8 (HIGH). A vulnerability was discovered in the firmware builds after 8.0.2.3267 and prior to 8.1.3.1301 in CCX devices. A flaw in the firmware build process did not properly restrict access to a resource from ...
How severe is CVE-2024-3281?
CVE-2024-3281 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-3281?
Check the references section above for vendor advisories and patch information. Affected products include: Hp Poly Ccx 350, Hp Poly Ccx 400, Hp Poly Ccx 500, Hp Poly Ccx 505, Hp Poly Ccx 600.