What is CVE-2024-12136?

CVE-2024-12136 is a medium-severity vulnerability in Elfatek Anka_jpd00028, classified under Missing Critical Step in Authentication. CVSS score: 6.9/10. Published 2025-03-19.

How severe is CVE-2024-12136?

Medium severity. CVSS v3 base score is 6.9 out of 10.

Vulnerability in Elfatek Anka_jpd00028

CVE-2024-12136

Missing Critical Step in Authentication vulnerability in Elfatek Elektronics ANKA JPD-00028 allows Authentication Bypass. This issue affects ANKA JPD-00028: before V.01.01.

EPSS: 0.000 (0.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.9 (Medium). Vector: CVSS:3.1/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H.

Affected products

Elfatek Anka_jpd00028
Elfatek Anka_jpd00028_firmware
Elfatek Elektronics Anka Jpd-00028 — versions 0

Weakness classification (CWE)

CWE-304 — Missing Critical Step in Authentication

References

iletisim@usom.gov.tr (Third Party Advisory, government-resource, broken-link)
iletisim@usom.gov.tr (government-resource)

Frequently asked questions

What is CVE-2024-12136?: CVE-2024-12136 is a medium-severity vulnerability in Elfatek Anka_jpd00028, classified under Missing Critical Step in Authentication. CVSS score: 6.9/10. Published 2025-03-19.
How severe is CVE-2024-12136?: Medium severity. CVSS v3 base score is 6.9 out of 10.