CVE-2024-47044

CVE-2024-47044

Vendor Nippon Telegraph And Telephone East Corporation
Product Hikari Denwa router RT-400MI
Weakness CWE-451
Published September 26, 2024
Last update October 17, 2024

CVSS base score

What the vulnerability does

01Description

Multiple Home GateWay/Hikari Denwa routers provided by NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION are vulnerable to insufficient access restrictions for Device Setting pages. If this vulnerability is exploited, an attacker who identified WAN-side IPv6 address may access the product's Device Setting page via WAN-side. Note that, the same products are also provided by NIPPON TELEGRAPH AND TELEPHONE WEST CORPORATION, but the vulnerability only affects products subscribed and used in NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION areas.

Key dates

02Disclosure timeline

September 26, 2024 CVE published
October 17, 2024 Record updated