CVE-2024-24782 MEDIUM

CVE-2024-24782: HIMA: Origin Validation Error in multiple products

Vendor Hima
Product F30 03X YY (COM)
Weakness CWE-346 · Origin validation
Published February 13, 2024
Last update May 8, 2025

CVSS base score

4.3/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

An unauthenticated attacker can send a ping request from one network to another through an error in the origin verification even though the ports are separated by VLAN.

Key dates

02Disclosure timeline

February 13, 2024 CVE published
May 8, 2025 Record updated