CVE-2024-46505
Published: 09 January 2025
Summary
CVE-2024-46505 is a critical-severity Incorrect Default Permissions (CWE-276) vulnerability in Medium (inferred from references). Its CVSS base score is 9.1 (Critical).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 11.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-2 (Flaw Remediation) and CM-6 (Configuration Settings).
Deeper analysis
Infoblox BloxOne version 2.4 contains a business logic flaw stemming from thick client vulnerabilities, tracked as CVE-2024-46505. This issue was published on January 9, 2025, and carries a CVSS v3.1 base score of 9.1 (Critical), with the vector AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H. It is associated with CWEs 276 (Incorrect Default Permissions), 312 (Cleartext Storage of Sensitive Information), 319 (Insufficiently Protected Credentials), and 798 (Use of Hard-coded Credentials).
The vulnerability enables exploitation by unauthenticated attackers over the network with low complexity and no user interaction required. Successful exploitation results in high integrity and availability impacts, though confidentiality remains unaffected, allowing attackers to potentially manipulate system operations or disrupt services without privileges.
Details on mitigation, including any patches or advisories, are available in the referenced disclosure at https://jayaramyalla.medium.com/bloxone-business-logic-flaw-due-to-thick-client-vulnerabilities-cve-2024-46505-04a4f1966f4b. Security practitioners should consult this source for vendor-specific remediation guidance.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-42216
Vulnerability details
Infoblox BloxOne v2.4 was discovered to contain a business logic flaw due to thick client vulnerabilities.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Remote unauthenticated network exploitation of a public-facing application due to business logic and credential-handling flaws directly matches T1190.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly remediates the business logic flaw and thick client vulnerabilities in Infoblox BloxOne v2.4 through flaw identification, patching, and verification.
Mitigates hard-coded credentials and insufficiently protected credentials (CWEs 798, 319) by managing authenticators to prevent their insecure use in the thick client.
Addresses incorrect default permissions (CWE-276) by enforcing secure configuration settings that prevent unauthorized access and manipulation in the thick client.