CVE-2024-22388: HID Global Encoders Improper Authorization

First published: Tue Feb 06 2024(Updated: )

Certain configuration available in the communication channel for encoders could expose sensitive data when reader configuration cards are programmed. This data could include credential and device administration keys.

Credit: ics-cert@hq.dhs.gov

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/mitre-cve
• source/MITRE
• agent/references
• agent/weakness
• agent/title
• agent/first-publish-date
• agent/type
• agent/description
• agent/author
• agent/event
• collector/epss-latest
• source/FIRST
• agent/epss
• agent/severity
• agent/last-modified-date
• agent/softwarecombine
• agent/tags
• collector/nvd-api
• source/NVD
• agent/software-canonical-lookup
• agent/software-canonical-lookup-request
• vendor/hidglobal
• canonical/hidglobal iclass se cp1000 encoder firmware
• canonical/hidglobal iclass se cp1000 encoder
• canonical/hidglobal iclass se readers firmware
• canonical/hidglobal iclass se readers
• canonical/hidglobal iclass se reader modules firmware
• canonical/hidglobal iclass se reader modules
• canonical/hidglobal iclass se processors firmware
• canonical/hidglobal iclass se processors
• canonical/hidglobal omnikey 5427ck firmware
• canonical/hidglobal omnikey 5427ck
• canonical/hidglobal omnikey 5127ck firmware
• canonical/hidglobal omnikey 5127ck
• canonical/hidglobal omnikey 5023 firmware
• canonical/hidglobal omnikey 5023
• canonical/hidglobal omnikey 5027 firmware
• canonical/hidglobal omnikey 5027