CVE	CNA Value	Alignment	NIST Value	Reason
CVE-2024-1245   (6 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) High		Privileges Required (PR) High
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Unchanged	≠	Scope (S) Changed	Unclear if Scope change occurs. No identification of security boundaries being crossed.
	Confidentiality (C) Low		Confidentiality (C) Low
	Integrity (I) None	≠	Integrity (I) Low	No limiting factors for integrity listed
	Availability (A) None		Availability (A) None
CVE-2024-1246   (5 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) High	≠	Attack Complexity (AC) Low	No Race Condition, implementation specific secrets required or MiTM identified for NVD analyst
	Privileges Required (PR) High		Privileges Required (PR) High
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Unchanged	≠	Scope (S) Changed	Security boundary cross identified
	Confidentiality (C) Low		Confidentiality (C) Low
	Integrity (I) None	≠	Integrity (I) Low	No limiting factors for integrity listed
	Availability (A) None		Availability (A) None
CVE-2024-1247   (5 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) High	≠	Attack Complexity (AC) Low	No Race Condition, implementation specific secrets required or MiTM identified for NVD analyst
	Privileges Required (PR) High		Privileges Required (PR) High
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Unchanged	≠	Scope (S) Changed	Security boundary cross identified
	Confidentiality (C) None	≠	Confidentiality (C) Low	No limiting factors for confidentiality listed
	Integrity (I) Low		Integrity (I) Low
	Availability (A) None		Availability (A) None