CVE-2024-28021

Опубликовано: 11 июн. 2024

Источник: nvd

CVSS3: 7.4

EPSS Низкий

Описание

A vulnerability exists in the FOXMAN-UN/UNEM server that affects the message queueing mechanism’s certificate validation. If exploited an attacker could spoof a trusted entity causing a loss of confidentiality and integrity.

Ссылки

https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true
Vendor Advisory
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true
Vendor Advisory
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true
Vendor Advisory
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:hitachienergy:foxman-un:r15b:pc4:*:*:*:*:*:*

cpe:2.3:a:hitachienergy:foxman-un:r16b:pc2:*:*:*:*:*:*

cpe:2.3:a:hitachienergy:foxman_un:r15a:*:*:*:*:*:*:*

cpe:2.3:a:hitachienergy:foxman_un:r16a:*:*:*:*:*:*:*

cpe:2.3:a:hitachienergy:unem:r15a:*:*:*:*:*:*:*

cpe:2.3:a:hitachienergy:unem:r15b:pc4:*:*:*:*:*:*

cpe:2.3:a:hitachienergy:unem:r16a:*:*:*:*:*:*:*

cpe:2.3:a:hitachienergy:unem:r16b:pc2:*:*:*:*:*:*

EPSS

Процентиль: 40%

0.00182

Низкий

7.4 High

CVSS3

Дефекты

CWE-295

Связанные уязвимости

GHSA-qjqw-554m-3g9j

CVSS3: 8

github

больше 1 года назад