Gs-4210-24pl4c Firmware Security Vulnerabilities and Issues — Gs-4210-24pl4c Firmware CVE List

Lucene search

PlanetGs-4210-24pl4c Firmware

4 matches found

CVE•added 2024/09/30 8:15 a.m.•39 views

CVE-2024-8454

The swctrl service is used to detect and remotely manage PLANET Technology devices. Certain switch models have a Denial-of-Service vulnerability in the swctrl service, allowing unauthenticated remote attackers to send crafted packets that can crash the service.

7.5CVSS5.7AI score0.00251EPSS

CVE•added 2024/09/30 8:15 a.m.•38 views

CVE-2024-8459

Certain switch models from PLANET Technology store SNMPv3 users' passwords in plaintext within the configuration files, allowing remote attackers with administrator privileges to read the file and obtain the credentials.

7.2CVSS5.9AI score0.00086EPSS

CVE•added 2024/09/30 7:15 a.m.•37 views

CVE-2024-8451

Certain switch models from PLANET Technology have an SSH service that improperly handles insufficiently authenticated connection requests, allowing unauthorized remote attackers to exploit this weakness to occupy connection slots and prevent legitimate users from accessing the SSH service.

7.5CVSS7.4AI score0.00367EPSS

CVE•added 2024/09/30 7:15 a.m.•36 views

CVE-2024-8452

Certain switch models from PLANET Technology only support obsolete algorithms for authentication protocol and encryption protocol in the SNMPv3 service, allowing attackers to obtain plaintext SNMPv3 credentials potentially.

7.5CVSS7.6AI score0.00058EPSS