CVE-2024-33895

🗓️ 02 Aug 2024 00:00:00Reported by mitreType

cve

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 33 Views

Cosy+ devices use unique key for encryptio

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2024-33895	2 Aug 202420:42	–	circl
CNNVD	HMS Networks HMS Cosy+ 安全漏洞	2 Aug 202400:00	–	cnnvd
Cvelist	CVE-2024-33895	2 Aug 202400:00	–	cvelist
EUVD	EUVD-2024-31599	3 Oct 202520:07	–	euvd
NVD	CVE-2024-33895	2 Aug 202418:16	–	nvd
Packet Storm	Ewon Cosy+ Hardcoded Key	19 Aug 202400:00	–	packetstorm
Positive Technologies	PT-2024-25532 · Cosy+ · Cosy+	2 Aug 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-33895	23 May 202510:21	–	redhatcve
The Hacker News	Industrial Remote Access Tool Ewon Cosy+ Vulnerable to Root Access Attacks	12 Aug 202406:57	–	thn
Vulnrichment	CVE-2024-33895	2 Aug 202400:00	–	vulnrichment

NVD

Node

hms-networks ewon_cosy+_firmwareRange21.0–21.2s10

OR

hms-networks ewon_cosy+_firmwareRange22.0–22.1s3

AND

hms-networks ewon_cosy+_4g_apacMatch-

OR

hms-networks ewon_cosy+_4g_euMatch-

OR

hms-networks ewon_cosy+_4g_jpMatch-

OR

hms-networks ewon_cosy+_4g_naMatch-

OR

hms-networks ewon_cosy+_ethernetMatch-

OR

hms-networks ewon_cosy+_wifiMatch-

Source	Link
blog	www.blog.syss.com/posts/hacking-a-secure-industrial-remote-access-gateway/
hms-networks	www.hms-networks.com/cyber-security
hmsnetworks	www.hmsnetworks.blob.core.windows.net/nlw/docs/default-source/products/cybersecurity/security-advisory/hms-security-advisory-2024-07-29-001--ewon-several-cosy--vulnerabilities.pdf
ewon	www.ewon.biz/products/cosy/ewon-cosy-wifi
seclists	www.seclists.org/fulldisclosure/2024/Aug/22

04 Nov 2025 17:15Current

7.2High risk

Vulners AI Score7.2

CVSS 3.16.6

EPSS0.00386

SSVC

cosy+devices encryption firmware key unique configuration parameters .