Vulnerability Description
An improper input validation allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by sending a specially crafted HTTP request.
Related Weaknesses (CWE)
References
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/con
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/con
FAQ
What is CVE-2024-36455?
CVE-2024-36455 is a documented vulnerability. An improper input validation allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by sending a specially crafted HTTP request.
How severe is CVE-2024-36455?
CVSS scoring is not yet available for CVE-2024-36455. Check NVD for updates.
Is there a patch for CVE-2024-36455?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.