What is the severity of CVE-2024-0188?

CVE-2024-0188 is classified as a problematic vulnerability due to its potential for weak password requirements.

How do I fix CVE-2024-0188?

To fix CVE-2024-0188, you should implement stronger password requirements in the change_password_teacher.php file.

What kind of attack can CVE-2024-0188 lead to?

CVE-2024-0188 can lead to unauthorized access due to weak password configurations exploitable by remote attackers.

Which software versions are affected by CVE-2024-0188?

CVE-2024-0188 affects RRJ Nueva Ecija Engineer Online Portal version 1.0.

Is remote exploitation possible with CVE-2024-0188?

Yes, CVE-2024-0188 can be exploited remotely, facilitating unauthorized access to the system.

Vulnerability/
CVE-2024-0188

high

8.1

CWE

521

EPSS

0.063%

2/1/2024

17/5/2024

CVE-2024-0188: RRJ Nueva Ecija Engineer Online Portal change_password_teacher.php weak password

First published: Tue Jan 02 2024(Updated: )

A vulnerability, which was classified as problematic, was found in RRJ Nueva Ecija Engineer Online Portal 1.0. This affects an unknown part of the file change_password_teacher.php. The manipulation leads to weak password requirements. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. The identifier VDB-249501 was assigned to this vulnerability.

Credit: cna@vuldb.com

Affected Software	Affected Version	How to fix
Engineers Online Portal	=1.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-0188?
CVE-2024-0188 is classified as a problematic vulnerability due to its potential for weak password requirements.
How do I fix CVE-2024-0188?
To fix CVE-2024-0188, you should implement stronger password requirements in the change_password_teacher.php file.
What kind of attack can CVE-2024-0188 lead to?
CVE-2024-0188 can lead to unauthorized access due to weak password configurations exploitable by remote attackers.
Which software versions are affected by CVE-2024-0188?
CVE-2024-0188 affects RRJ Nueva Ecija Engineer Online Portal version 1.0.
Is remote exploitation possible with CVE-2024-0188?
Yes, CVE-2024-0188 can be exploited remotely, facilitating unauthorized access to the system.

collector/mitre-cve
agent/type
agent/first-publish-date
agent/references
agent/weakness
agent/author
agent/severity
agent/title
agent/event
agent/softwarecombine
agent/description
collector/epss-latest
source/FIRST
agent/epss
agent/last-modified-date
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/nia
canonical/engineers online portal
version/engineers online portal/1.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.