Security Advisory

CVE-2024-51978

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-25 07:17:32

Last updated 2026-03-30 18:04:21

Assigner rapid7

State PUBLISHED

Description

An unauthenticated attacker who knows the target devices serial number, can generate the default administrator password for the device. An unauthenticated attacker can first discover the target devices serial number via CVE-2024-51977 over HTTP/HTTPS/IPP, or via a PJL request, or via an SNMP request.

← Browse all CVEs View on cve.org ↗