Lucene search
Hitachi EnergyCVELIST:CVE-2024-28022HistoryJun 11, 2024 - 6:15 p.m.
CVE-2024-28022
2024-06-1118:15:42
CWE-307
Hitachi Energy
www.cve.org
5
cve-2024-28022
vulnerability
foxman-un/unem
apigateway
unauthorized access
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L
EPSS
0.001
Percentile
17.7%
A vulnerability exists in the FOXMAN-UN/UNEM server / APIGateway that
if exploited allows a malicious user to perform an arbitrary number
of authentication attempts using different passwords, and
eventually gain access to the targeted account.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "FOXMAN-UN",
"vendor": "Hitachi Energy",
"versions": [
{
"status": "affected",
"version": "FOXMAN-UN R16B"
},
{
"status": "affected",
"version": "FOXMAN-UN R15B"
},
{
"status": "affected",
"version": "FOXMAN-UN R16A"
},
{
"status": "affected",
"version": "FOXMAN-UN R15A"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UNEM",
"vendor": "Hitachi Energy",
"versions": [
{
"status": "affected",
"version": "UNEM R16B"
},
{
"status": "affected",
"version": "UNEM R15B"
},
{
"status": "affected",
"version": "UNEM 16A"
},
{
"status": "affected",
"version": "UNEM 15A"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2024-28022
2024-06-11 18:15:42
cve
cve
CVE-2024-28022
2024-06-11 19:16:06
nvd
nvd
CVE-2024-28022
2024-06-11 19:16:06
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L
EPSS
0.001
Percentile
17.7%
Related for CVELIST:CVE-2024-28022