nvd-json-data-feeds/CVE-2024/CVE-2024-26xx/CVE-2024-2617.json

{
  "id": "CVE-2024-2617",
  "sourceIdentifier": "cybersecurity@hitachienergy.com",
  "published": "2024-04-30T13:15:47.200",
  "lastModified": "2024-04-30T17:52:35.057",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "\nA vulnerability exists in the RTU500 that allows for authenticated and authorized users to bypass secure update. If a\nmalicious actor successfully exploits this vulnerability, they\ncould use it to update the RTU500 with unsigned firmware.\n\n"
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "cybersecurity@hitachienergy.com",
        "type": "Secondary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "HIGH",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "availabilityImpact": "HIGH",
          "baseScore": 7.2,
          "baseSeverity": "HIGH"
        },
        "exploitabilityScore": 1.2,
        "impactScore": 5.9
      }
    ]
  },
  "references": [
    {
      "url": "https://publisher.hitachienergy.com/preview?DocumentId=8DBD000199&languageCode=en&Preview=true",
      "source": "cybersecurity@hitachienergy.com"
    }
  ]
}
Auto-Update: 2024-04-30T14:00:51.835924+00:00 2024-04-30 14:03:42 +00:00			`{`
			`"id": "CVE-2024-2617",`
			`"sourceIdentifier": "cybersecurity@hitachienergy.com",`
			`"published": "2024-04-30T13:15:47.200",`
Auto-Update: 2024-04-30T18:00:40.323139+00:00 2024-04-30 18:03:31 +00:00			`"lastModified": "2024-04-30T17:52:35.057",`
			`"vulnStatus": "Awaiting Analysis",`
Auto-Update: 2024-04-30T14:00:51.835924+00:00 2024-04-30 14:03:42 +00:00			`"descriptions": [`
			`{`
			`"lang": "en",`
			`"value": "\nA vulnerability exists in the RTU500 that allows for authenticated and authorized users to bypass secure update. If a\nmalicious actor successfully exploits this vulnerability, they\ncould use it to update the RTU500 with unsigned firmware.\n\n"`
			`}`
			`],`
			`"metrics": {`
			`"cvssMetricV31": [`
			`{`
			`"source": "cybersecurity@hitachienergy.com",`
			`"type": "Secondary",`
			`"cvssData": {`
			`"version": "3.1",`
			`"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",`
			`"attackVector": "NETWORK",`
			`"attackComplexity": "LOW",`
			`"privilegesRequired": "HIGH",`
			`"userInteraction": "NONE",`
			`"scope": "UNCHANGED",`
			`"confidentialityImpact": "HIGH",`
			`"integrityImpact": "HIGH",`
			`"availabilityImpact": "HIGH",`
			`"baseScore": 7.2,`
			`"baseSeverity": "HIGH"`
			`},`
			`"exploitabilityScore": 1.2,`
			`"impactScore": 5.9`
			`}`
			`]`
			`},`
			`"references": [`
			`{`
			`"url": "https://publisher.hitachienergy.com/preview?DocumentId=8DBD000199&languageCode=en&Preview=true",`
			`"source": "cybersecurity@hitachienergy.com"`
			`}`
			`]`
			`}`