CVE-2024-28020

Опубликовано: 11 июн. 2024

Источник: nvd

CVSS3: 8

EPSS Низкий

Описание

A user/password reuse vulnerability exists in the FOXMAN-UN/UNEM application and server management. If exploited a malicious high-privileged user could use the passwords and login information through complex routines to extend access on the server and other services.

Ссылки

https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true
Vendor Advisory
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true
Vendor Advisory
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true
Vendor Advisory
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:hitachienergy:foxman-un:r15a:*:*:*:*:*:*:*

cpe:2.3:a:hitachienergy:foxman-un:r15b:*:*:*:*:*:*:*

cpe:2.3:a:hitachienergy:foxman-un:r16a:*:*:*:*:*:*:*

cpe:2.3:a:hitachienergy:foxman-un:r16b:*:*:*:*:*:*:*

cpe:2.3:a:hitachienergy:unem:r15a:*:*:*:*:*:*:*

cpe:2.3:a:hitachienergy:unem:r15b:*:*:*:*:*:*:*

cpe:2.3:a:hitachienergy:unem:r16a:*:*:*:*:*:*:*

cpe:2.3:a:hitachienergy:unem:r16b:*:*:*:*:*:*:*

EPSS

Процентиль: 47%

0.00242

Низкий

8 High

CVSS3

Дефекты

CWE-286

NVD-CWE-noinfo

Связанные уязвимости

GHSA-94mv-6g8w-jxvx