CVE-2024-2461 MEDIUM

CVE-2024-2461

Vendor Hitachi Energy

Product FOX61x

Weakness CWE-23

Published June 11, 2024

Last update August 1, 2024

View on NVD All CVEs

CVSS base score

6.9/10

Attack vector Network

Attack complexity Low

Privileges required High

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

If exploited an attacker could traverse the file system to access files or directories that would otherwise be inaccessible

Key dates

02Disclosure timeline

June 11, 2024 CVE published

August 1, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2024-2461 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/23.html

Related vulnerabilities

Identifiers

CVE CVE-2024-2461

CWE CWE-23

CVSS 6.9 / MEDIUM

Affected versions

Vendor Hitachi Energy

Product FOX61x

Affected ≤ FOX61x R16B Revision E (cesm3_r16b04_02, cesne_r16b04_02 and f10ne_r16b04_02)

Vendor Hitachi Energy

Product FOX61x

Affected FOX61x R15B

Vendor Hitachi Energy

Product FOX61x

Affected FOX61x R16A

Vendor Hitachi Energy

Product FOX61x

Affected FOX61x R15A

Vendor Hitachi Energy

Product XMC20

Affected ≤ XMC20 R16B Revision C (cent2_r16b04_02, co5ne_r16b04_02)

Vendor Hitachi Energy

Product XMC20

Affected XMC20 R15B

Vendor Hitachi Energy

Product XMC20

Affected XMC20 R16A

Vendor Hitachi Energy

Product XMC20

Affected XMC20 R15A

CVE-2024-2461

01Description

02Disclosure timeline

03References

04Related CVE