Common Weakness Enumeration

CWE-522

Allowed-with-Review

Insufficiently Protected Credentials

Abstraction: Class · Status: Incomplete

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

1811 vulnerabilities reference this CWE, most recent first.

CVE-2024-43812 (GCVE-0-2024-43812)

Vulnerability from cvelistv5 – Published: 2024-10-22 21:19 – Updated: 2024-10-23 14:43
VLAI
Title
Kieback&Peter DDC4000 Series Path Traversal Insufficiently Protected Credentials
Summary
Kieback & Peter's DDC4000 series has an insufficiently protected credentials vulnerability, which may allow an unauthenticated attacker with access to /etc/passwd to read the password hashes of all users on the system.
SSVC
Exploitation: none Automatable: no Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
  • CWE-522 - Insufficiently Protected Credentials
Assigner
Impacted products
Vendor Product Version
Kieback&Peter DDC4040e Affected: 0 , ≤ 1.17.6 (custom)
Create a notification for this product.
Kieback&Peter DDC4020e Affected: 0 , ≤ 1.17.6 (custom)
Create a notification for this product.
Kieback&Peter DDC4400e Affected: 0 , ≤ 1.17.6 (custom)
Create a notification for this product.
Kieback&Peter DDC4200e Affected: 0 , ≤ 1.17.6 (custom)
Create a notification for this product.
Kieback&Peter DDC4002e Affected: 0 , ≤ 1.17.6 (custom)
Create a notification for this product.
Kieback&Peter DDC4400 Affected: 0 , ≤ 1.12.14 (custom)
Create a notification for this product.
Kieback&Peter DDC4200-L Affected: 0 , ≤ 1.12.14 (custom)
Create a notification for this product.
Kieback&Peter DDC4200 Affected: 0 , ≤ 1.12.14 (custom)
Create a notification for this product.
Kieback&Peter DDC4100 Affected: 0 , ≤ 1.7.4 (custom)
Create a notification for this product.
Kieback&Peter DDC4002 Affected: 0 , ≤ 1.12.14 (custom)
Create a notification for this product.
kieback\&peter ddc4400_firmware Affected: 0 , ≤ 1.12.14 (custom)
    cpe:2.3:o:kieback\&peter:ddc4400_firmware:*:*:*:*:*:*:*:*
Create a notification for this product.
kieback\&peter ddc4002e_firmware Affected: 0 , ≤ 1.17.6 (custom)
    cpe:2.3:o:kieback\&peter:ddc4002e_firmware:*:*:*:*:*:*:*:*
Create a notification for this product.
kieback\&peter ddc4200e_firmware Affected: 0 , ≤ 1.17.6 (custom)
    cpe:2.3:o:kieback\&peter:ddc4200e_firmware:*:*:*:*:*:*:*:*
Create a notification for this product.
kieback\&peter ddc4002_firmware Affected: 0 , ≤ 1.12.14 (custom)
    cpe:2.3:o:kieback\&peter:ddc4002_firmware:*:*:*:*:*:*:*:*
Create a notification for this product.
kieback\&peter ddc4100_firmware Affected: 0 , ≤ 1.7.4 (custom)
    cpe:2.3:o:kieback\&peter:ddc4100_firmware:*:*:*:*:*:*:*:*
Create a notification for this product.
kieback\&peter ddc4200_firmware Affected: 0 , ≤ 1.12.14 (custom)
    cpe:2.3:o:kieback\&peter:ddc4200_firmware:*:*:*:*:*:*:*:*
Create a notification for this product.
kieback\&peter ddc4200-l_firmware Affected: 0 , ≤ 1.12.14 (custom)
    cpe:2.3:o:kieback\&peter:ddc4200-l_firmware:*:*:*:*:*:*:*:*
Create a notification for this product.
kieback\&peter ddc4400e_firmware Affected: 0 , ≤ 1.17.6 (custom)
    cpe:2.3:o:kieback\&peter:ddc4400e_firmware:*:*:*:*:*:*:*:*
Create a notification for this product.
kieback\&peter ddc4020e_firmware Affected: 0 , ≤ 1.17.6 (custom)
    cpe:2.3:o:kieback\&peter:ddc4020e_firmware:*:*:*:*:*:*:*:*
Create a notification for this product.
kieback\&peter ddc4040e_firmware Affected: 0 , ≤ 1.17.6 (custom)
    cpe:2.3:o:kieback\&peter:ddc4040e_firmware:*:*:*:*:*:*:*:*
Create a notification for this product.
Date Public
2024-10-17 16:36
Credits
Raphael Ruf of terreActive AG reported these vulnerabilities to CISA.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:kieback\\\u0026peter:ddc4400_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "ddc4400_firmware",
            "vendor": "kieback\\\u0026peter",
            "versions": [
              {
                "lessThanOrEqual": "1.12.14",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:kieback\\\u0026peter:ddc4002e_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "ddc4002e_firmware",
            "vendor": "kieback\\\u0026peter",
            "versions": [
              {
                "lessThanOrEqual": "1.17.6",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:kieback\\\u0026peter:ddc4200e_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "ddc4200e_firmware",
            "vendor": "kieback\\\u0026peter",
            "versions": [
              {
                "lessThanOrEqual": "1.17.6",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:kieback\\\u0026peter:ddc4002_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "ddc4002_firmware",
            "vendor": "kieback\\\u0026peter",
            "versions": [
              {
                "lessThanOrEqual": "1.12.14",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:kieback\\\u0026peter:ddc4100_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "ddc4100_firmware",
            "vendor": "kieback\\\u0026peter",
            "versions": [
              {
                "lessThanOrEqual": "1.7.4",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:kieback\\\u0026peter:ddc4200_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "ddc4200_firmware",
            "vendor": "kieback\\\u0026peter",
            "versions": [
              {
                "lessThanOrEqual": "1.12.14",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:kieback\\\u0026peter:ddc4200-l_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "ddc4200-l_firmware",
            "vendor": "kieback\\\u0026peter",
            "versions": [
              {
                "lessThanOrEqual": "1.12.14",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:kieback\\\u0026peter:ddc4400e_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "ddc4400e_firmware",
            "vendor": "kieback\\\u0026peter",
            "versions": [
              {
                "lessThanOrEqual": "1.17.6",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:kieback\\\u0026peter:ddc4020e_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "ddc4020e_firmware",
            "vendor": "kieback\\\u0026peter",
            "versions": [
              {
                "lessThanOrEqual": "1.17.6",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:kieback\\\u0026peter:ddc4040e_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "ddc4040e_firmware",
            "vendor": "kieback\\\u0026peter",
            "versions": [
              {
                "lessThanOrEqual": "1.17.6",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-43812",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-10-23T14:41:41.280464Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-23T14:43:37.078Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "DDC4040e",
          "vendor": "Kieback\u0026Peter",
          "versions": [
            {
              "lessThanOrEqual": "1.17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "DDC4020e",
          "vendor": "Kieback\u0026Peter",
          "versions": [
            {
              "lessThanOrEqual": "1.17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "DDC4400e",
          "vendor": "Kieback\u0026Peter",
          "versions": [
            {
              "lessThanOrEqual": "1.17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "DDC4200e",
          "vendor": "Kieback\u0026Peter",
          "versions": [
            {
              "lessThanOrEqual": "1.17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "DDC4002e",
          "vendor": "Kieback\u0026Peter",
          "versions": [
            {
              "lessThanOrEqual": "1.17.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "DDC4400",
          "vendor": "Kieback\u0026Peter",
          "versions": [
            {
              "lessThanOrEqual": "1.12.14",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "DDC4200-L",
          "vendor": "Kieback\u0026Peter",
          "versions": [
            {
              "lessThanOrEqual": "1.12.14",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "DDC4200",
          "vendor": "Kieback\u0026Peter",
          "versions": [
            {
              "lessThanOrEqual": "1.12.14",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "DDC4100",
          "vendor": "Kieback\u0026Peter",
          "versions": [
            {
              "lessThanOrEqual": "1.7.4",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "DDC4002",
          "vendor": "Kieback\u0026Peter",
          "versions": [
            {
              "lessThanOrEqual": "1.12.14",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Raphael Ruf of terreActive AG reported these vulnerabilities to CISA."
        }
      ],
      "datePublic": "2024-10-17T16:36:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003e\n\n\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eKieback \u0026amp; Peter\u0027s DDC4000 series\u0026nbsp;\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003ehas an insufficiently protected credentials vulnerability, which may allow an unauthenticated attacker with access to /etc/passwd to read the password hashes of all users on the system.\u003c/span\u003e\n\n\u003c/span\u003e\n\n\u003c/span\u003e"
            }
          ],
          "value": "Kieback \u0026 Peter\u0027s DDC4000 series\u00a0has an insufficiently protected credentials vulnerability, which may allow an unauthenticated attacker with access to /etc/passwd to read the password hashes of all users on the system."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "LOCAL",
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "privilegesRequired": "NONE",
            "providerUrgency": "NOT_DEFINED",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "NONE",
            "valueDensity": "NOT_DEFINED",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "HIGH",
            "vulnerabilityResponseEffort": "NOT_DEFINED"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-522",
              "description": "CWE-522 Insufficiently Protected Credentials",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-10-22T21:19:23.383Z",
        "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "shortName": "icscert"
      },
      "references": [
        {
          "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-291-05"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eKieback\u0026amp;Peter DDC4002, DDC4100, DDC4200, DDC4200-L and DDC4400 \ncontrollers are considered End-of-Life (EOL) and are no longer \nsupported. Users operating these controllers should ensure they are \noperated in a strictly separate OT environment and consider updating to a\n supported controller.\u003c/p\u003e\n\u003cp\u003eKieback\u0026amp;Peter recommends users update to DDC4002e, DDC4200e, DDC4400e, DDC4020e and DDC4040e controllers.\u003c/p\u003e\n\u003cp\u003eKieback\u0026amp;Peter recommends all affected users contact their local \nKieback\u0026amp;Peter office to update the firmware of the supported DDC \nsystems to v1.21.0 or later.\u003c/p\u003e\n\n\u003cbr\u003e"
            }
          ],
          "value": "Kieback\u0026Peter DDC4002, DDC4100, DDC4200, DDC4200-L and DDC4400 \ncontrollers are considered End-of-Life (EOL) and are no longer \nsupported. Users operating these controllers should ensure they are \noperated in a strictly separate OT environment and consider updating to a\n supported controller.\n\n\nKieback\u0026Peter recommends users update to DDC4002e, DDC4200e, DDC4400e, DDC4020e and DDC4040e controllers.\n\n\nKieback\u0026Peter recommends all affected users contact their local \nKieback\u0026Peter office to update the firmware of the supported DDC \nsystems to v1.21.0 or later."
        }
      ],
      "source": {
        "advisory": "ICSA-24-291-05",
        "discovery": "EXTERNAL"
      },
      "title": "Kieback\u0026Peter DDC4000 Series Path Traversal Insufficiently Protected Credentials",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
    "assignerShortName": "icscert",
    "cveId": "CVE-2024-43812",
    "datePublished": "2024-10-22T21:19:23.383Z",
    "dateReserved": "2024-08-21T18:03:31.222Z",
    "dateUpdated": "2024-10-23T14:43:37.078Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-42192 (GCVE-0-2024-42192)

Vulnerability from cvelistv5 – Published: 2025-10-16 20:24 – Updated: 2025-10-17 13:33
VLAI
Title
HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a credential leakage
Summary
HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a credential leakage which could allow an attacker to access other computers or applications.
SSVC
Exploitation: none Automatable: no Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
  • CWE-522 - Insufficiently Protected Credentials
Assigner
HCL
Impacted products
Date Public
2025-10-16 20:21
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-42192",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-10-17T13:32:56.405668Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-17T13:33:25.412Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Traveler for Microsoft Outlook",
          "vendor": "HCL Software",
          "versions": [
            {
              "status": "affected",
              "version": "3.0.14"
            }
          ]
        }
      ],
      "datePublic": "2025-10-16T20:21:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eHCL Traveler for Microsoft Outlook (HTMO) is susceptible to a credential leakage which could allow an attacker to access other computers or applications.\u003cbr\u003e\u003c/p\u003e\u003cbr\u003e"
            }
          ],
          "value": "HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a credential leakage which could allow an attacker to access other computers or applications."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-522",
              "description": "CWE-522 Insufficiently Protected Credentials",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-10-16T20:24:53.515Z",
        "orgId": "1e47fe04-f25f-42fa-b674-36de2c5e3cfc",
        "shortName": "HCL"
      },
      "references": [
        {
          "url": "https://support.hcl-software.com/csm?id=kb_article\u0026sysparm_article=KB0124066"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a credential leakage",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1e47fe04-f25f-42fa-b674-36de2c5e3cfc",
    "assignerShortName": "HCL",
    "cveId": "CVE-2024-42192",
    "datePublished": "2025-10-16T20:24:53.515Z",
    "dateReserved": "2024-07-29T21:32:08.371Z",
    "dateUpdated": "2025-10-17T13:33:25.412Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-41771 (GCVE-0-2024-41771)

Vulnerability from cvelistv5 – Published: 2025-03-03 15:29 – Updated: 2025-09-01 01:11
VLAI
Title
IBM Engineering Requirements Management DOORS Next information disclosure
Summary
IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote attacker to download temporary files which could expose application logic or other sensitive information.
SSVC
Exploitation: none Automatable: no Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
  • CWE-522 - Insufficiently Protected Credentials
Assigner
ibm
References
URL Tags
https://www.ibm.com/support/pages/node/7184663 vendor-advisorypatch
Impacted products
Vendor Product Version
IBM Engineering Requirements Management DOORS Next Affected: 7.0.2
Affected: 7.0.3
Affected: 7.1
    cpe:2.3:a:ibm:engineering_requirements_management_doors:7.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:engineering_requirements_management_doors:7.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:engineering_requirements_management_doors:7.1:*:*:*:*:*:*:*
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-41771",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-03-04T19:00:56.359534Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-04T19:01:10.858Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:a:ibm:engineering_requirements_management_doors:7.0.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:engineering_requirements_management_doors:7.0.3:*:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:engineering_requirements_management_doors:7.1:*:*:*:*:*:*:*"
          ],
          "defaultStatus": "unaffected",
          "product": "Engineering Requirements Management DOORS Next",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "7.0.2"
            },
            {
              "status": "affected",
              "version": "7.0.3"
            },
            {
              "status": "affected",
              "version": "7.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote attacker to download temporary files which could expose application logic or other sensitive information."
            }
          ],
          "value": "IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote attacker to download temporary files which could expose application logic or other sensitive information."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-522",
              "description": "CWE-522 Insufficiently Protected Credentials",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-09-01T01:11:58.234Z",
        "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
        "shortName": "ibm"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory",
            "patch"
          ],
          "url": "https://www.ibm.com/support/pages/node/7184663"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "IBM Engineering Requirements Management DOORS Next information disclosure",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
    "assignerShortName": "ibm",
    "cveId": "CVE-2024-41771",
    "datePublished": "2025-03-03T15:29:14.503Z",
    "dateReserved": "2024-07-22T12:02:59.128Z",
    "dateUpdated": "2025-09-01T01:11:58.234Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-41770 (GCVE-0-2024-41770)

Vulnerability from cvelistv5 – Published: 2025-03-03 15:28 – Updated: 2025-09-01 01:11
VLAI
Title
IBM Engineering Requirements Management DOORS Next information disclosure
Summary
IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote attacker to download temporary files which could expose application logic or other sensitive information.
SSVC
Exploitation: none Automatable: no Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
  • CWE-522 - Insufficiently Protected Credentials
Assigner
ibm
References
URL Tags
https://www.ibm.com/support/pages/node/7184663 vendor-advisorypatch
Impacted products
Vendor Product Version
IBM Engineering Requirements Management DOORS Next Affected: 7.0.2
Affected: 7.0.3
Affected: 7.1
    cpe:2.3:a:ibm:engineering_requirements_management_doors:7.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:engineering_requirements_management_doors:7.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:engineering_requirements_management_doors:7.1:*:*:*:*:*:*:*
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-41770",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-03-04T19:05:34.410184Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-04T19:05:46.401Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:a:ibm:engineering_requirements_management_doors:7.0.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:engineering_requirements_management_doors:7.0.3:*:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:engineering_requirements_management_doors:7.1:*:*:*:*:*:*:*"
          ],
          "defaultStatus": "unaffected",
          "product": "Engineering Requirements Management DOORS Next",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "7.0.2"
            },
            {
              "status": "affected",
              "version": "7.0.3"
            },
            {
              "status": "affected",
              "version": "7.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote attacker to download temporary files which could expose application logic or other sensitive information."
            }
          ],
          "value": "IBM Engineering Requirements Management DOORS Next 7.0.2, 7.0.3, and 7.1 could allow a remote attacker to download temporary files which could expose application logic or other sensitive information."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-522",
              "description": "CWE-522 Insufficiently Protected Credentials",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-09-01T01:11:25.136Z",
        "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
        "shortName": "ibm"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory",
            "patch"
          ],
          "url": "https://www.ibm.com/support/pages/node/7184663"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "IBM Engineering Requirements Management DOORS Next information disclosure",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
    "assignerShortName": "ibm",
    "cveId": "CVE-2024-41770",
    "datePublished": "2025-03-03T15:28:57.065Z",
    "dateReserved": "2024-07-22T12:02:59.128Z",
    "dateUpdated": "2025-09-01T01:11:25.136Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-40704 (GCVE-0-2024-40704)

Vulnerability from cvelistv5 – Published: 2024-08-15 16:44 – Updated: 2024-08-15 17:35
VLAI
Title
IBM InfoSphere Information Server information disclosure
Summary
IBM InfoSphere Information Server 11.7 could allow a privileged user to obtain sensitive information from authentication request headers. IBM X-Force ID: 298277.
SSVC
Exploitation: none Automatable: no Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
  • CWE-522 - Insufficiently Protected Credentials
Assigner
ibm
Impacted products
Vendor Product Version
IBM InfoSphere Information Server Affected: 11.7
    cpe:2.3:a:ibm:infosphere_information_server:11.7:*:*:*:*:*:*:*
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-40704",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-08-15T17:35:18.683696Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-15T17:35:25.483Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:a:ibm:infosphere_information_server:11.7:*:*:*:*:*:*:*"
          ],
          "defaultStatus": "unaffected",
          "product": "InfoSphere Information Server",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "11.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "IBM InfoSphere Information Server 11.7 could allow a privileged user to obtain sensitive information from authentication request headers.   IBM X-Force ID:  298277."
            }
          ],
          "value": "IBM InfoSphere Information Server 11.7 could allow a privileged user to obtain sensitive information from authentication request headers.   IBM X-Force ID:  298277."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-522",
              "description": "CWE-522 Insufficiently Protected Credentials",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-08-15T16:44:10.022Z",
        "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
        "shortName": "ibm"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.ibm.com/support/pages/node/7160853"
        },
        {
          "tags": [
            "vdb-entry"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/298277"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "IBM InfoSphere Information Server information disclosure",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
    "assignerShortName": "ibm",
    "cveId": "CVE-2024-40704",
    "datePublished": "2024-08-15T16:44:10.022Z",
    "dateReserved": "2024-07-08T19:31:12.239Z",
    "dateUpdated": "2024-08-15T17:35:25.483Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-40703 (GCVE-0-2024-40703)

Vulnerability from cvelistv5 – Published: 2024-09-22 12:20 – Updated: 2024-09-22 15:27
VLAI
Title
IBM Cognos Analytics information disclosure
Summary
IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, 12.0.2, 12.0.3, and IBM Cognos Analytics Reports for iOS 11.0.0.7 could allow a local attacker to obtain sensitive information in the form of an API key. An attacker could use this information to launch further attacks against affected applications.
SSVC
Exploitation: none Automatable: no Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
  • CWE-522 - Insufficiently Protected Credentials
Assigner
ibm
References
Impacted products
Vendor Product Version
IBM Cognos Analytics Affected: 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, 12.0.2, 12.0.3
    cpe:2.3:a:ibm:cognos_analytics:11.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:cognos_analytics:11.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:cognos_analytics:11.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:cognos_analytics:11.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:cognos_analytics:11.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:cognos_analytics:12.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:cognos_analytics:12.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:cognos_analytics:12.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:cognos_analytics:12.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:cognos_analytics_reports:11.0.0.7:*:*:*:*:ios:*:*
Create a notification for this product.
IBM Cognos Analytics Reports Affected: 11.0.0.7
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-40703",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-22T15:27:21.725190Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-22T15:27:30.186Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:a:ibm:cognos_analytics:11.2.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:cognos_analytics:11.2.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:cognos_analytics:11.2.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:cognos_analytics:11.2.3:*:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:cognos_analytics:11.2.4:*:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:cognos_analytics:12.0.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:cognos_analytics:12.0.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:cognos_analytics:12.0.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:cognos_analytics:12.0.3:*:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:cognos_analytics_reports:11.0.0.7:*:*:*:*:ios:*:*"
          ],
          "defaultStatus": "unaffected",
          "product": "Cognos Analytics",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, 12.0.2, 12.0.3"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "platforms": [
            "iOS"
          ],
          "product": "Cognos Analytics Reports",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "11.0.0.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, 12.0.2, 12.0.3, and IBM Cognos Analytics Reports for iOS 11.0.0.7 could allow a local attacker to obtain sensitive information in the form of an API key.  An attacker could use this information to launch further attacks against affected applications."
            }
          ],
          "value": "IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, 12.0.2, 12.0.3, and IBM Cognos Analytics Reports for iOS 11.0.0.7 could allow a local attacker to obtain sensitive information in the form of an API key.  An attacker could use this information to launch further attacks against affected applications."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-522",
              "description": "CWE-522 Insufficiently Protected Credentials",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-09-22T12:20:28.223Z",
        "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
        "shortName": "ibm"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.ibm.com/support/pages/node/7160700"
        },
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.ibm.com/support/pages/node/7168038"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "IBM Cognos Analytics information disclosure",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
    "assignerShortName": "ibm",
    "cveId": "CVE-2024-40703",
    "datePublished": "2024-09-22T12:20:28.223Z",
    "dateReserved": "2024-07-08T19:31:12.238Z",
    "dateUpdated": "2024-09-22T15:27:30.186Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-39818 (GCVE-0-2024-39818)

Vulnerability from cvelistv5 – Published: 2024-08-14 16:36 – Updated: 2024-08-16 13:26
VLAI
Title
Zoom Workplace Apps and SDKs - Protection Mechanism Failure
Summary
Protection mechanism failure for some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct information disclosure via network access.
SSVC
Exploitation: none Automatable: yes Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
  • CWE-522 - Insufficiently Protected Credentials
Assigner
Impacted products
Vendor Product Version
Zoom Communications Inc. Zoom Workplace Apps and SDKs Affected: see references
Create a notification for this product.
zoom workplace_desktop Affected: 0 , < 6.0.0 (custom)
    cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:linux:*:*
    cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:windows:*:*
    cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:macos:*:*
Create a notification for this product.
zoom workplace_app Affected: 0 , < 6.0.0 (custom)
    cpe:2.3:a:zoom:workplace_app:*:*:*:*:*:*:*:*
Create a notification for this product.
zoom vdi_windows_meeting_client Affected: 0 , < 5.17.13 (custom)
    cpe:2.3:a:zoom:vdi_windows_meeting_client:*:*:*:*:*:*:*:*
Create a notification for this product.
zoom rooms Affected: 0 , < 6.0.0 (custom)
    cpe:2.3:a:zoom:rooms:-:*:*:*:*:ipad_os:*:*
    cpe:2.3:a:zoom:rooms:*:*:*:*:*:macos:*:*
    cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*
Create a notification for this product.
Date Public
2024-08-13 12:00
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:linux:*:*",
              "cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:windows:*:*",
              "cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:macos:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "workplace_desktop",
            "vendor": "zoom",
            "versions": [
              {
                "lessThan": "6.0.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:zoom:workplace_app:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "workplace_app",
            "vendor": "zoom",
            "versions": [
              {
                "lessThan": "6.0.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:zoom:vdi_windows_meeting_client:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "vdi_windows_meeting_client",
            "vendor": "zoom",
            "versions": [
              {
                "lessThan": "5.17.13",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:zoom:rooms:-:*:*:*:*:ipad_os:*:*",
              "cpe:2.3:a:zoom:rooms:*:*:*:*:*:macos:*:*",
              "cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "rooms",
            "vendor": "zoom",
            "versions": [
              {
                "lessThan": "6.0.0",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-39818",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-08-14T17:34:38.585943Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-16T13:26:38.801Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "platforms": [
            "Windows",
            "MacOS",
            "Linux",
            "iOS",
            "Android"
          ],
          "product": "Zoom Workplace Apps and SDKs",
          "vendor": "Zoom Communications Inc.",
          "versions": [
            {
              "status": "affected",
              "version": "see references"
            }
          ]
        }
      ],
      "datePublic": "2024-08-13T12:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Protection mechanism failure for some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct information disclosure via network access."
            }
          ],
          "value": "Protection mechanism failure for some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct information disclosure via network access."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-522",
              "description": "CWE-522 Insufficiently Protected Credentials",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-08-14T16:36:37.347Z",
        "orgId": "99b9af0d-a833-4a5d-9e2f-8b1324f35351",
        "shortName": "Zoom"
      },
      "references": [
        {
          "url": "https://www.zoom.com/en/trust/security-bulletin/zsb-24022"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Zoom Workplace Apps and SDKs - Protection Mechanism Failure",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "99b9af0d-a833-4a5d-9e2f-8b1324f35351",
    "assignerShortName": "Zoom",
    "cveId": "CVE-2024-39818",
    "datePublished": "2024-08-14T16:36:37.347Z",
    "dateReserved": "2024-06-28T19:43:03.519Z",
    "dateUpdated": "2024-08-16T13:26:38.801Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-39290 (GCVE-0-2024-39290)

Vulnerability from cvelistv5 – Published: 2024-11-22 00:11 – Updated: 2024-11-22 11:34
VLAI
Summary
Insufficiently protected credentials issue exists in AIPHONE IX SYSTEM and IXG SYSTEM. A network-adjacent unauthenticated attacker may obtain sensitive information such as a username and its password in the address book.
SSVC
Exploitation: none Automatable: no Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
  • CWE-522 - Insufficiently protected credentials
Assigner
Impacted products
Vendor Product Version
AIPHONE CO., LTD. IX-MV Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-MV7-HB Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-MV7-HBT Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-MV7-HW Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-MV7-HWT Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-MV7-HW-JP Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-MV7-B Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-MV7-BT Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-MV7-W Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-MV7-WT Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-DA Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-DAU Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-DB Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-DBT Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-EA Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-EAT Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-EAU Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-DV Affected: firmware Ver.7.11 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-DVT Affected: firmware Ver.7.11 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-DVF Affected: firmware Ver.7.11 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-DVF-P Affected: firmware Ver.7.11 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-DVF-L Affected: firmware Ver.7.11 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-DVM Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-DU Affected: firmware Ver.7.11 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-DVF-RA Affected: firmware Ver.7.11 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-DVF-2RA Affected: firmware Ver.7.11 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-BA Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-BAU Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-BB Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-BBT Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-FA Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-SSA Affected: firmware Ver.7.11 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-SS-2G Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-SS-2GT Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-SS-2G-N Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-BU Affected: firmware Ver.7.11 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-SSA-RA Affected: firmware Ver.7.11 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-SSA-2RA Affected: firmware Ver.7.11 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-RS-B Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-RS-BT Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-RS-W Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-RS-WT Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IXW-MA Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IX-SPMIC Affected: firmware Ver.7.10 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IXG-2C7 Affected: firmware Ver.3.01 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IXG-2C7-L Affected: firmware Ver.3.01 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IXG-DM7 Affected: firmware Ver.3.00 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IXG-DM7-HID Affected: firmware Ver.3.00 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IXG-DM7-HIDA Affected: firmware Ver.3.00 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IXG-DM7-10K Affected: firmware Ver.3.00 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IXG-MK Affected: firmware Ver.3.00 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IXGW-GW Affected: firmware Ver.3.01 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IXGW-TGW Affected: firmware Ver.3.01 and earlier
Create a notification for this product.
AIPHONE CO., LTD. IXGW-LC Affected: firmware Ver.3.00 and earlier
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-39290",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-11-22T11:29:20.295390Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-22T11:34:09.606Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "IX-MV",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-MV7-HB",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-MV7-HBT",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-MV7-HW",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-MV7-HWT",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-MV7-HW-JP",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-MV7-B",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-MV7-BT",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-MV7-W",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-MV7-WT",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-DA",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-DAU",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-DB",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-DBT",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-EA",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-EAT",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-EAU",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-DV",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.11 and earlier"
            }
          ]
        },
        {
          "product": "IX-DVT",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.11 and earlier"
            }
          ]
        },
        {
          "product": "IX-DVF",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.11 and earlier"
            }
          ]
        },
        {
          "product": "IX-DVF-P",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.11 and earlier"
            }
          ]
        },
        {
          "product": "IX-DVF-L",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.11 and earlier"
            }
          ]
        },
        {
          "product": "IX-DVM",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-DU",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.11 and earlier"
            }
          ]
        },
        {
          "product": "IX-DVF-RA",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.11 and earlier"
            }
          ]
        },
        {
          "product": "IX-DVF-2RA",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.11 and earlier"
            }
          ]
        },
        {
          "product": "IX-BA",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-BAU",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-BB",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-BBT",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-FA",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-SSA",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.11 and earlier"
            }
          ]
        },
        {
          "product": "IX-SS-2G",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-SS-2GT",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-SS-2G-N",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-BU",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.11 and earlier"
            }
          ]
        },
        {
          "product": "IX-SSA-RA",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.11 and earlier"
            }
          ]
        },
        {
          "product": "IX-SSA-2RA",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.11 and earlier"
            }
          ]
        },
        {
          "product": "IX-RS-B",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-RS-BT",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-RS-W",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-RS-WT",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IXW-MA",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IX-SPMIC",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.7.10 and earlier"
            }
          ]
        },
        {
          "product": "IXG-2C7",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.3.01 and earlier"
            }
          ]
        },
        {
          "product": "IXG-2C7-L",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.3.01 and earlier"
            }
          ]
        },
        {
          "product": "IXG-DM7",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.3.00 and earlier"
            }
          ]
        },
        {
          "product": "IXG-DM7-HID",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.3.00 and earlier"
            }
          ]
        },
        {
          "product": "IXG-DM7-HIDA",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.3.00 and earlier"
            }
          ]
        },
        {
          "product": "IXG-DM7-10K",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.3.00 and earlier"
            }
          ]
        },
        {
          "product": "IXG-MK",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.3.00 and earlier"
            }
          ]
        },
        {
          "product": "IXGW-GW",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.3.01 and earlier"
            }
          ]
        },
        {
          "product": "IXGW-TGW",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.3.01 and earlier"
            }
          ]
        },
        {
          "product": "IXGW-LC",
          "vendor": "AIPHONE CO., LTD.",
          "versions": [
            {
              "status": "affected",
              "version": "firmware Ver.3.00 and earlier"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Insufficiently protected credentials issue exists in AIPHONE IX SYSTEM and IXG SYSTEM. A network-adjacent unauthenticated attacker may obtain sensitive information such as a username and its password in the address book."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-522",
              "description": "Insufficiently protected credentials",
              "lang": "en-US",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-11-22T00:11:56.742Z",
        "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "shortName": "jpcert"
      },
      "references": [
        {
          "url": "https://www.aiphone.net/important/20241016_1/"
        },
        {
          "url": "https://www.aiphone.net/important/20241016_2/"
        },
        {
          "url": "https://www.aiphone.net/support/software-documents/ix/"
        },
        {
          "url": "https://www.aiphone.net/support/software-documents/ixg/"
        },
        {
          "url": "https://jvn.jp/en/jp/JVN41397971/"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
    "assignerShortName": "jpcert",
    "cveId": "CVE-2024-39290",
    "datePublished": "2024-11-22T00:11:56.742Z",
    "dateReserved": "2024-09-26T01:39:38.784Z",
    "dateUpdated": "2024-11-22T11:34:09.606Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-39278 (GCVE-0-2024-39278)

Vulnerability from cvelistv5 – Published: 2024-09-05 22:39 – Updated: 2024-09-06 13:26
VLAI
Title
Hughes Network Systems Insufficiently Protected Credentials
Summary
Credentials to access device configuration information stored unencrypted in flash memory. These credentials would allow read-only access to network configuration information and terminal configuration data.
SSVC
Exploitation: none Automatable: no Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
  • CWE-522 - Insufficiently Protected Credentials
Assigner
Impacted products
Vendor Product Version
Hughes Network Systems WL3000 Fusion Software Affected: 0 , < 2.7.0.10 (custom)
Create a notification for this product.
Credits
An anonymous researcher reported these vulnerabilities to CISA.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-39278",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-06T13:26:44.532806Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-06T13:26:53.933Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "WL3000 Fusion Software",
          "vendor": "Hughes Network Systems",
          "versions": [
            {
              "lessThan": "2.7.0.10",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "An anonymous researcher reported these vulnerabilities to CISA."
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eCredentials to access device configuration information stored unencrypted in flash memory. These credentials would allow read-only access to network configuration information and terminal configuration data.\u003c/span\u003e"
            }
          ],
          "value": "Credentials to access device configuration information stored unencrypted in flash memory. These credentials would allow read-only access to network configuration information and terminal configuration data."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "PHYSICAL",
            "availabilityImpact": "NONE",
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        },
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "HIGH",
            "attackRequirements": "NONE",
            "attackVector": "PHYSICAL",
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "privilegesRequired": "NONE",
            "providerUrgency": "NOT_DEFINED",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "NONE",
            "valueDensity": "NOT_DEFINED",
            "vectorString": "CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "NONE",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "NONE",
            "vulnerabilityResponseEffort": "NOT_DEFINED"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-522",
              "description": "CWE-522 Insufficiently Protected Credentials",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-09-05T22:39:30.138Z",
        "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "shortName": "icscert"
      },
      "references": [
        {
          "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-249-01"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eHughes Network Systems has patched the vulnerabilities, which requires no action by the user. Any questions or concerns should be directed to \u003c/span\u003e\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.hughes.com/who-we-are/contact-us\"\u003eHughes Network Systems customer support\u003c/a\u003e\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003e.\u003c/span\u003e\n\n\u003cbr\u003e"
            }
          ],
          "value": "Hughes Network Systems has patched the vulnerabilities, which requires no action by the user. Any questions or concerns should be directed to  Hughes Network Systems customer support https://www.hughes.com/who-we-are/contact-us ."
        }
      ],
      "source": {
        "advisory": "ICSA-24-249-01",
        "discovery": "EXTERNAL"
      },
      "title": "Hughes Network Systems Insufficiently Protected Credentials",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
    "assignerShortName": "icscert",
    "cveId": "CVE-2024-39278",
    "datePublished": "2024-09-05T22:39:30.138Z",
    "dateReserved": "2024-08-05T16:23:44.808Z",
    "dateUpdated": "2024-09-06T13:26:53.933Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-38285 (GCVE-0-2024-38285)

Vulnerability from cvelistv5 – Published: 2024-06-13 17:26 – Updated: 2024-08-02 04:04
VLAI
Title
Insufficiently Protected Credentials in Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600)
Summary
Logs storing credentials are insufficiently protected and can be decoded through the use of open source tools.
SSVC
Exploitation: none Automatable: yes Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
  • CWE-522 - Insufficiently Protected Credentials
Assigner
References
Impacted products
Vendor Product Version
Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600) Affected: 0 , ≤ 3.1.171.9 (custom)
Create a notification for this product.
motorolasolutions vigilant_fixed_lpr_coms_box_bcav1f2_c600 Affected: 0 , ≤ 3.1.171.9 (custom)
    cpe:2.3:a:motorolasolutions:vigilant_fixed_lpr_coms_box_bcav1f2_c600:0:*:*:*:*:*:*:*
Create a notification for this product.
Credits
The Michigan State Police Michigan Cyber Command Center (MC3)
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:motorolasolutions:vigilant_fixed_lpr_coms_box_bcav1f2_c600:0:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "vigilant_fixed_lpr_coms_box_bcav1f2_c600",
            "vendor": "motorolasolutions",
            "versions": [
              {
                "lessThanOrEqual": "3.1.171.9",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-38285",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-13T19:14:40.437180Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T19:38:39.089Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T04:04:25.101Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "government-resource",
              "x_transferred"
            ],
            "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-165-19"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Vigilant Fixed LPR Coms Box (BCAV1F2-C600)",
          "vendor": "Motorola Solutions",
          "versions": [
            {
              "lessThanOrEqual": "3.1.171.9",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "The Michigan State Police Michigan Cyber Command Center (MC3)"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\n\n\u003cp\u003eLogs storing credentials are insufficiently protected and can be decoded through the use of open source tools.\u003c/p\u003e\u003cbr\u003e\n\n"
            }
          ],
          "value": "Logs storing credentials are insufficiently protected and can be decoded through the use of open source tools."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "PHYSICAL",
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "privilegesRequired": "NONE",
            "providerUrgency": "NOT_DEFINED",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "NONE",
            "valueDensity": "NOT_DEFINED",
            "vectorString": "CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "HIGH",
            "vulnerabilityResponseEffort": "NOT_DEFINED"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-522",
              "description": "CWE-522 Insufficiently Protected Credentials",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-06-13T17:26:46.091Z",
        "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "shortName": "icscert"
      },
      "references": [
        {
          "tags": [
            "government-resource"
          ],
          "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-165-19"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eMotorola Solutions recommends the following for each identified vulnerability:\u003c/p\u003e\n\n\u003cp\u003eCVE-2024-38285:\u003c/p\u003e\u003cul\u003e\u003cli\u003eDelete the log files.\u003c/li\u003e\u003c/ul\u003e\u003cp\u003eMotorola Solutions has already remediated this vulnerability for all vulnerable systems. No further actions are required by customers.\u003c/p\u003e\n\n\u003cbr\u003e"
            }
          ],
          "value": "Motorola Solutions recommends the following for each identified vulnerability:\n\n\n\nCVE-2024-38285:\n\n  *  Delete the log files.\n\n\nMotorola Solutions has already remediated this vulnerability for all vulnerable systems. No further actions are required by customers."
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Insufficiently Protected Credentials in Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600)",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
    "assignerShortName": "icscert",
    "cveId": "CVE-2024-38285",
    "datePublished": "2024-06-13T17:26:46.091Z",
    "dateReserved": "2024-06-12T16:16:09.649Z",
    "dateUpdated": "2024-08-02T04:04:25.101Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Mitigation
Architecture and Design

Use an appropriate security mechanism to protect the credentials.

Mitigation
Architecture and Design

Make appropriate use of cryptography to protect the credentials.

Mitigation
Implementation

Use industry standards to protect the credentials (e.g. LDAP, keystore, etc.).

CAPEC-102: Session Sidejacking

Session sidejacking takes advantage of an unencrypted communication channel between a victim and target system. The attacker sniffs traffic on a network looking for session tokens in unencrypted traffic. Once a session token is captured, the attacker performs malicious actions by using the stolen token with the targeted application to impersonate the victim. This attack is a specific method of session hijacking, which is exploiting a valid session token to gain unauthorized access to a target system or information. Other methods to perform a session hijacking are session fixation, cross-site scripting, or compromising a user or server machine and stealing the session token.

CAPEC-474: Signature Spoofing by Key Theft

An attacker obtains an authoritative or reputable signer's private signature key by theft and then uses this key to forge signatures from the original signer to mislead a victim into performing actions that benefit the attacker.

CAPEC-50: Password Recovery Exploitation

An attacker may take advantage of the application feature to help users recover their forgotten passwords in order to gain access into the system with the same privileges as the original user. Generally password recovery schemes tend to be weak and insecure.

CAPEC-509: Kerberoasting

Through the exploitation of how service accounts leverage Kerberos authentication with Service Principal Names (SPNs), the adversary obtains and subsequently cracks the hashed credentials of a service account target to exploit its privileges. The Kerberos authentication protocol centers around a ticketing system which is used to request/grant access to services and to then access the requested services. As an authenticated user, the adversary may request Active Directory and obtain a service ticket with portions encrypted via RC4 with the private key of the authenticated account. By extracting the local ticket and saving it disk, the adversary can brute force the hashed value to reveal the target account credentials.

CAPEC-551: Modify Existing Service

When an operating system starts, it also starts programs called services or daemons. Modifying existing services may break existing services or may enable services that are disabled/not commonly used.

CAPEC-555: Remote Services with Stolen Credentials

This pattern of attack involves an adversary that uses stolen credentials to leverage remote services such as RDP, telnet, SSH, and VNC to log into a system. Once access is gained, any number of malicious activities could be performed.

CAPEC-560: Use of Known Domain Credentials

An adversary guesses or obtains (i.e. steals or purchases) legitimate credentials (e.g. userID/password) to achieve authentication and to perform authorized actions under the guise of an authenticated user or service.

CAPEC-561: Windows Admin Shares with Stolen Credentials

An adversary guesses or obtains (i.e. steals or purchases) legitimate Windows administrator credentials (e.g. userID/password) to access Windows Admin Shares on a local machine or within a Windows domain.

CAPEC-600: Credential Stuffing

An adversary tries known username/password combinations against different systems, applications, or services to gain additional authenticated access. Credential Stuffing attacks rely upon the fact that many users leverage the same username/password combination for multiple systems, applications, and services.

CAPEC-644: Use of Captured Hashes (Pass The Hash)

An adversary obtains (i.e. steals or purchases) legitimate Windows domain credential hash values to access systems within the domain that leverage the Lan Man (LM) and/or NT Lan Man (NTLM) authentication protocols.

CAPEC-645: Use of Captured Tickets (Pass The Ticket)

An adversary uses stolen Kerberos tickets to access systems/resources that leverage the Kerberos authentication protocol. The Kerberos authentication protocol centers around a ticketing system which is used to request/grant access to services and to then access the requested services. An adversary can obtain any one of these tickets (e.g. Service Ticket, Ticket Granting Ticket, Silver Ticket, or Golden Ticket) to authenticate to a system/resource without needing the account's credentials. Depending on the ticket obtained, the adversary may be able to access a particular resource or generate TGTs for any account within an Active Directory Domain.

CAPEC-652: Use of Known Kerberos Credentials

An adversary obtains (i.e. steals or purchases) legitimate Kerberos credentials (e.g. Kerberos service account userID/password or Kerberos Tickets) with the goal of achieving authenticated access to additional systems, applications, or services within the domain.

CAPEC-653: Use of Known Operating System Credentials

An adversary guesses or obtains (i.e. steals or purchases) legitimate operating system credentials (e.g. userID/password) to achieve authentication and to perform authorized actions on the system, under the guise of an authenticated user or service. This applies to any Operating System.