CVE-2024-54848 Information

Description

Improper handling and storage of certificates in CP Plus CP-VNR-3104 B3223P22C02424 allow attackers to decrypt communications or execute a man-in-the-middle attacks.

Reference

https://capec.mitre.org/data/definitions/233 https://github.com/Yashodhanvivek/CP-VNR-3104-NVR-Vulnerabilties/blob/main/CPPlus_CP-VNR-3104_Security_Assessment.pdf https://nvd.nist.gov/vuln/detail/CVE-2021-21551 https://payatu.com/blog/solving-the-problem-of-encrypted-firmware/