CVE-2024-2462

EPSS 0.11%
Veröffentlicht 11.06.2024 13:15:49
Zuletzt bearbeitet 21.11.2024 09:09:48
Quelle cybersecurity@hitachienergy.co
CVE-Watchlists
Login
Unerledigt
Login

Allow attackers to intercept or falsify data exchanges between the client 
and the server

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)

Herstellerhitachi_energy

≫

Produkt foxman-un

Default Statusunaffected

Version <= FOXMAN-UN R16B PC2

Version 0

Status affected

Version FOXMAN-UN R16B PC3

Status unaffected

Version <= FOXMAN-UN R15B PC4

Version 0

Status affected

Version FOXMAN-UN R15B PC5

Status unaffected

Version FOXMAN-UN R16A

Status affected

Version FOXMAN-UN R15A

Status affected

Herstellerhitachi_energy

≫

Produkt fox61x

Default Statusunaffected

Version < FOX61x R16B

Version 0

Status affected

Version FOX61x R16B

Status unaffected

Herstellerhitachi_energy

≫

Produkt foxcst

Default Statusunaffected

Version < FOXCST_16.2.1

Version 0

Status affected

Version FOXCST_16.2.1

Status unaffected

Herstellerhitachi_energy

≫

Produkt unem

Default Statusunaffected

Version <= UNEM R16B PC2

Version 0

Status affected

Version UNEM R16B PC3

Status unaffected

Version <= UNEM R15B PC4

Version 0

Status affected

Version UNEM R15B PC5

Status unaffected

Version UNEM R16A

Status affected

Version UNEM R15A

Status affected

Herstellerhitachi_energy

≫

Produkt xmc20

Default Statusunaffected

Version R16B

Status affected

Herstellerhitachi_energy

≫

Produkt ecst

Default Statusunaffected

Version ECST_16.2.1

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.11%	0.296

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
cybersecurity@hitachienergy.com	6.8	0	0	CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:H/SC:L/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-297 Improper Validation of Certificate with Host Mismatch

The product communicates with a host that provides a certificate, but the product does not properly ensure that the certificate is actually associated with that host.

https://publisher.hitachienergy.com/preview?DocumentId=8DBD000198&languageCode=en&Preview=true

https://nvd.nist.gov/vuln/detail/CVE-2024-2462

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-2462

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-2462

EUVD