CVE-2024-12136

MEDIUM 6.9

Improper Access Control in Elfatek Elektronics' ANKA JPD-00028

CVSS Score

6.9

EPSS Score

0.0%

EPSS Percentile

1th

Missing Critical Step in Authentication vulnerability in Elfatek Elektronics ANKA JPD-00028 allows Authentication Bypass. This issue affects ANKA JPD-00028: before V.01.01.

CWE	CWE-304
Vendor	elfatek elektronics
Product	anka jpd-00028
Published	Mar 19, 2025
Last Updated	Jun 1, 2026

Stay Ahead of the Next One

Get instant alerts for elfatek elektronics anka jpd-00028

Be the first to know when new medium vulnerabilities affecting elfatek elektronics anka jpd-00028 are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Attack Vector

Physical

Attack Complexity

High

Privileges Required

High

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

Elfatek Elektronics / ANKA JPD-00028

0 < V.01.01

References

NVD ↗ CVE.org ↗ EPSS Data ↗

usom.gov.tr: https://www.usom.gov.tr/bildirim/tr-25-0071 siberguvenlik.gov.tr: https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0071

Credits

Aleksey USANOV Positive Technologies