CVE ID

CVE-2024-23943

Severity

9.1

Vulnerability Type

Missing Authentication for Critical Function (CWE-306)

Summary

An unauthenticated remote attacker can gain access to the cloud API due to a lack of authentication for a critical function in the affected devices. Availability is not affected.