Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-28020

A user/password reuse vulnerability exists in the FOXMAN-UN/UNEM application and server management. If exploited a malicious high-privileged user could use the passwords and login information through complex routines to extend access on the server and other services.

Published

2024-06-11T19:16:05.787

Last Modified

2024-11-21T09:05:39.310

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.0 (HIGH)

Weaknesses

Type: Secondary
CWE-286
Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	hitachienergy	foxman-un	r15a	Yes
Application	hitachienergy	foxman-un	r15b	Yes
Application	hitachienergy	foxman-un	r16a	Yes
Application	hitachienergy	foxman-un	r16b	Yes
Application	hitachienergy	unem	r15a	Yes
Application	hitachienergy	unem	r15b	Yes
Application	hitachienergy	unem	r16a	Yes
Application	hitachienergy	unem	r16b	Yes

References

https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true Vendor Advisory ([email protected])
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true Vendor Advisory ([email protected])
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)