Lucene search

[email protected]CVE-2024-2740

HistoryApr 11, 2024 - 1:25 a.m.

CVE-2024-2740

2024-04-1101:25:34

CWE-200

[email protected]

web.nvd.nist.gov

planet igs-4215-16t2s

information exposure

firmware vulnerability

remote access

web interface management

7.7 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

6.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

JSON

Information exposure vulnerability in Planet IGS-4215-16T2S, affecting firmware version 1.305b210528. This vulnerability could allow a remote attacker to access some administrative resources due to lack of proper management of the Switch web interface.

Affected configurations

Vulners

Node

planetplanetRange≤1.305b210528

VendorProductVersionCPE
planetplanet*cpe:2.3:a:planet:planet:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
planet	planet	*	cpe:2.3:a:planet:planet::::::::

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "IGS-4215-16T2S",
    "vendor": "Planet",
    "versions": [
      {
        "status": "affected",
        "version": "1.305b210528"
      }
    ]
  }
]

References

www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-planet-igs-4215-16t2s

7.7 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

6.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

JSON

Related for CVE-2024-2740

nvd1 cvelist1