CVE-2024-2161

9.8 CRITICAL

Published: March 21, 2024 Modified: April 15, 2026

Description

Use of Hard-coded Credentials in Kiloview NDI allows un-authenticated users to bypass authenticationThis issue affects Kiloview NDI N3, N3-s, N4, N20, N30, N40 and was fixed in Firmware version 2.02.0227 .

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

https://www.kiloview.com/en/support/download/1779/

Source: vulnerability@ncsc.ch

https://www.kiloview.com/en/support/download/n20-firmware-download/

Source: vulnerability@ncsc.ch

https://www.kiloview.com/en/support/download/n3-for-ndi/

Source: vulnerability@ncsc.ch

https://www.kiloview.com/en/support/download/n3-s-firmware-download/

Source: vulnerability@ncsc.ch

https://www.kiloview.com/en/support/download/n30-for-ndi/

Source: vulnerability@ncsc.ch

https://www.kiloview.com/en/support/download/n40/

Source: vulnerability@ncsc.ch

https://www.kiloview.com/en/support/download/1779/