Lucene search

[email protected]NVD:CVE-2024-2103

HistoryApr 04, 2024 - 4:15 p.m.

CVE-2024-2103

2024-04-0416:15:08

CWE-1242

[email protected]

web.nvd.nist.gov

inclusion of undocumented features

vulnerability

privileged access level

sel-700bt

sel-700g

sel-710-5

sel-751

sel-787-2

sel-787-3

sel-787-4

sel-787z

unpredictable behavior

product instruction manual

20240308

20240329

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

AI Score

6.3

Confidence

High

EPSS

Percentile

9.0%

JSON

Inclusion of undocumented features vulnerability accessible when logged on with a privileged access level on the following Schweitzer Engineering Laboratories relays could allow the relay to behave unpredictably:
SEL-700BT Motor Bus Transfer Relay, SEL-700G Generator Protection Relay, SEL-710-5 Motor Protection Relay, SEL-751 Feeder Protection Relay, SEL-787-2/-3/-4 Transformer Protection Relay, SEL-787Z High-Impedance Differential Relay

. See product instruction manual appendix A dated 20240308 for more details regarding the SEL-751 Feeder Protection Relay. For more information for the other affected products, see their instruction manuals dated 20240329.

References

selinc.com/support/security-notifications/external-reports/

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

AI Score

6.3

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for NVD:CVE-2024-2103

ics1 cve1 cvelist1 vulnrichment1