Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-41156

Profile files from TRO600 series radios are extracted in plain-text and encrypted file formats. Profile files provide potential attackers valuable configuration information about the Tropos network. Profiles can only be exported by authenticated users with higher privilege of write access.

Published

2024-10-29T13:15:04.847

Last Modified

2024-12-05T15:29:31.730

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 2.7 (LOW)

Weaknesses

Type: Secondary
CWE-212
Type: Primary
CWE-212

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	hitachienergy	tro610_firmware	< 9.2.0.5	Yes
Hardware	hitachienergy	tro610	-	No
Operating System	hitachienergy	tro620_firmware	< 9.2.0.5	Yes
Hardware	hitachienergy	tro620	-	No
Operating System	hitachienergy	tro670_firmware	< 9.2.0.5	Yes
Hardware	hitachienergy	tro670	-	No

References

https://publisher.hitachienergy.com/preview?DocumentID=8DBD000147&LanguageCode=en&DocumentPartId=&Action=launch Vendor Advisory ([email protected])