CVE-2024-2011

CVSS v3 8.6 HIGH

8.6^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 4.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact HIGH

Scope UNCHANGED

heap-based buffer overflow vulnerability exists in the FOXMAN-UN/UNEM that if exploited will generally lead to a denial of service but can be used to execute arbitrary code, which is usually outside the scope of a program's implicit security policy

References

Link	Resource
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true	Vendor Advisory
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true	Vendor Advisory
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true	Vendor Advisory
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:hitachienergy:foxman-un:r15a:::::::*
	cpe:2.3:a:hitachienergy:foxman-un:r15b:pc4::::::
	cpe:2.3:a:hitachienergy:foxman-un:r16a:::::::*
	cpe:2.3:a:hitachienergy:foxman-un:r16b:pc2::::::
	cpe:2.3:a:hitachienergy:unem:r15a:::::::*
	cpe:2.3:a:hitachienergy:unem:r15b:pc4::::::
	cpe:2.3:a:hitachienergy:unem:r16a:::::::*
	cpe:2.3:a:hitachienergy:unem:r16b:pc2::::::

History

21 Nov 2024, 09:08

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~9.8~~	v2 : unknown v3 : 8.6
References	~~() https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true - Vendor Advisory~~	() https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true - Vendor Advisory
References	~~() https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true - Vendor Advisory~~	() https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true - Vendor Advisory

15 Aug 2024, 21:25

Type	Values Removed	Values Added
CWE		CWE-787
First Time		Hitachienergy unem Hitachienergy foxman-un Hitachienergy
References	~~() https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true -~~	() https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true - Vendor Advisory
References	~~() https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true -~~	() https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true - Vendor Advisory
CPE		cpe:2.3:a:hitachienergy:foxman-un:r16a:::::::* cpe:2.3:a:hitachienergy:unem:r15b:pc4:::::: cpe:2.3:a:hitachienergy:unem:r16b:pc2:::::: cpe:2.3:a:hitachienergy:foxman-un:r15b:pc4:::::: cpe:2.3:a:hitachienergy:foxman-un:r16b:pc2:::::: cpe:2.3:a:hitachienergy:foxman-un:r15a:::::::* cpe:2.3:a:hitachienergy:unem:r15a:::::::* cpe:2.3:a:hitachienergy:unem:r16a:::::::*
CVSS	v2 : ~~unknown~~ v3 : ~~8.6~~	v2 : unknown v3 : 9.8

11 Jun 2024, 14:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-06-11 14:15

Updated : 2024-11-21 09:08

NVD link : CVE-2024-2011

Mitre link : CVE-2024-2011

CVE.ORG link : CVE-2024-2011

JSON object : View

Products Affected

hitachienergy

CWE

CWE-122

Heap-based Buffer Overflow

CWE-787

Out-of-bounds Write

8.6 /10