.. / CVE-2024-32238

Exploit for H3C ER8300G2-X - Password Disclosure (CVE-2024-32238)

Description:

H3C ER8300G2-X is vulnerable to Incorrect Access Control. The password for the router’s management system can be accessed via the management system page login interface.

Nuclei Template

View the template here CVE-2024-32238.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2024/CVE-2024-32238.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2024-32238
https://github.com/asdfjkl11/CVE-2024-32238/issues/1
https://github.com/FuBoLuSec/CVE-2024-32238
https://cvefeed.io/vuln/detail/CVE-2024-32238
https://www.h3c.com/cn/Products_And_Solution/InterConnect/Products/Routers/Products/Enterprise/ER/ER8300G2-X/