Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
jvnJapan Vulnerability NotesJVN:25594256
HistoryJun 12, 2024 - 12:00 a.m.

JVN#25594256: Denial-of-service (DoS) vulnerability in IPCOM WAF function

2024-06-1200:00:00
Japan Vulnerability Notes
jvn.jp
1
ipcom
waf
vulnerability
dos
fsas technologies inc.
cwe-908
firmware
update
ipcom ex2 series
ipcom ve2 series
affected products

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

WAF function of IPCOM provided by Fsas Technologies Inc. contains a denial-of-service (DoS) vulnerability (CWE-908).

Impact

If the product receives a specially crafted packet by an attacker, the system may be rebooted or suspended.

Solution

Update the firmware
Update the firmware to the latest version according to the information provided by the developer.
The developer addressed the vulnerability in the following versions:

  • IPCOM EX2 Series (V01L0x Series) V01L07NF0301
  • IPCOM VE2 Series V01L07NF0301

Products Affected

  • IPCOM EX2 Series (V01L0x Series) V01L07NF0201 and earlier
  • IPCOM VE2 Series V01L07NF0201 and earlier

Related

cvelist 1
cve 1
nvd 1
cvelist
cvelist
CVE-2024-36454
2024-06-12 05:12:24
cve
cve
CVE-2024-36454
2024-06-12 06:15:09
nvd
nvd
CVE-2024-36454
2024-06-12 06:15:09

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON
Related for JVN:25594256
cvelist1cve1nvd1