mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-13 15:06:46 +00:00
90 lines
3.0 KiB
JSON
90 lines
3.0 KiB
JSON
{
|
|
"data_version": "4.0",
|
|
"data_type": "CVE",
|
|
"data_format": "MITRE",
|
|
"CVE_data_meta": {
|
|
"ID": "CVE-2024-47397",
|
|
"ASSIGNER": "vultures@jpcert.or.jp",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Weak authentication issue exists in AE1021 firmware versions 2.0.10 and earlier and AE1021PE firmware versions 2.0.10 and earlier. If this vulnerability is exploited, the authentication may be bypassed with an undocumented specific string."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Weak authentication",
|
|
"cweId": "CWE-1390"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"vendor_name": "FXC Inc.",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "AE1021",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "firmware versions 2.0.10 and earlier"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "AE1021PE",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "firmware versions 2.0.10 and earlier"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"url": "https://www.fxc.jp/news/20241213",
|
|
"refsource": "MISC",
|
|
"name": "https://www.fxc.jp/news/20241213"
|
|
},
|
|
{
|
|
"url": "https://jvn.jp/en/vu/JVNVU91084137/",
|
|
"refsource": "MISC",
|
|
"name": "https://jvn.jp/en/vu/JVNVU91084137/"
|
|
}
|
|
]
|
|
},
|
|
"impact": {
|
|
"cvss": [
|
|
{
|
|
"version": "3.1",
|
|
"baseSeverity": "HIGH",
|
|
"baseScore": 7.5,
|
|
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
|
|
}
|
|
]
|
|
}
|
|
} |