CVE-2024-2012 CRITICAL

CVE-2024-2012

Vendor Hitachi Energy
Product FOXMAN-UN
Weakness CWE-288
Published June 11, 2024
Last update August 1, 2024

CVSS base score

9.1/10
Attack vector Network
Attack complexity Low
Privileges required High
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

vulnerability exists in the FOXMAN-UN/UNEM server / API Gateway that if exploited an attacker could use to allow unintended commands or code to be executed on the UNEM server allowing sensitive data to be read or modified or could cause other unintended behavior

Key dates

02Disclosure timeline

June 11, 2024 CVE published
August 1, 2024 Record updated