{ "id": "CVE-2024-6421", "sourceIdentifier": "info@cert.vde.com", "published": "2024-07-10T08:15:11.720", "lastModified": "2024-09-05T18:11:43.297", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [ { "lang": "en", "value": "An unauthenticated remote attacker can read out sensitive device information through a incorrectly configured FTP service." }, { "lang": "es", "value": "Un atacante remoto no autenticado puede leer informaci\u00f3n confidencial del dispositivo a trav\u00e9s de un servicio FTP configurado incorrectamente." } ], "metrics": { "cvssMetricV31": [ { "source": "info@cert.vde.com", "type": "Primary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH" }, "exploitabilityScore": 3.9, "impactScore": 3.6 } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] }, { "source": "info@cert.vde.com", "type": "Secondary", "description": [ { "lang": "en", "value": "CWE-200" } ] } ], "configurations": [ { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:pepperl-fuchs:oit700-f113-b12-cb_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "2.11.0", "matchCriteriaId": "784251D9-E5BC-406B-A0B5-BF01706DBFE7" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:pepperl-fuchs:oit700-f113-b12-cb:-:*:*:*:*:*:*:*", "matchCriteriaId": "25864D9A-0BEA-4427-95D2-FBBEA77A0572" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:pepperl-fuchs:oit500-f113-b12-cb_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "2.11.0", "matchCriteriaId": "E24C955B-F5AD-4137-8A89-46B99F119A42" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:pepperl-fuchs:oit500-f113-b12-cb:-:*:*:*:*:*:*:*", "matchCriteriaId": "8A14DBBC-7129-419B-8158-A2AED41D22C2" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:pepperl-fuchs:oit200-f113-b12-cb_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "2.11.0", "matchCriteriaId": "A73CFD0C-620A-44DF-97E5-8938315D533A" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:pepperl-fuchs:oit200-f113-b12-cb:-:*:*:*:*:*:*:*", "matchCriteriaId": "D529BA26-283D-4BCF-BAFD-242105AA9649" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:pepperl-fuchs:oit1500-f113-b12-cb_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "2.11.0", "matchCriteriaId": "2407367C-A857-4990-9650-10B61BAD23D0" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:pepperl-fuchs:oit1500-f113-b12-cb:-:*:*:*:*:*:*:*", "matchCriteriaId": "23096D3E-2836-4FA1-9878-831C69EE5AE4" } ] } ] } ], "references": [ { "url": "https://cert.vde.com/en/advisories/VDE-2024-038", "source": "info@cert.vde.com", "tags": [ "Third Party Advisory" ] } ] }