CVE-2024-37654 Information

Description

An issue in BAS-IP AV-01D AV-01MD AV-01MFD AV-01ED AV-01KD AV-01BD AV-01KBD AV-02D AV-02IDE AV-02IDR AV-02IPD AV-02FDE AV-02FDR AV-03D AV-03BD AV-04AFD AV-04ASD AV-04FD AV-04SD AV-05FD AV-05SD AA-07BD AA-07BDI BA-04BD BA-04MD BA-08BD BA-08MD BA-12BD BA-12MD CR-02BD before 3.9.2 allows a remote attacker to obtain sensitive information via a crafted HTTP GET request.

Reference

https://github.com/DrieVlad/BAS-IP-vulnerabilities