admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2021/CVE-2021-403xx/CVE-2021-40342.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

220 lines
10 KiB
JSON
Raw Blame History

{
"id": "CVE-2021-40342",
"sourceIdentifier": "cybersecurity@hitachienergy.com",
"published": "2023-01-05T22:15:08.953",
"lastModified": "2024-11-21T06:23:54.320",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "\nIn the DES implementation, the affected product versions use a default key for encryption. Successful exploitation allows an attacker to obtain sensitive information and gain access to the network elements that are managed by the affected products versions.\n\n\n\n\n\nThis issue affects \n\n\n\n * FOXMAN-UN product: FOXMAN-UN R16A, FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B, FOXMAN-UN R11A, FOXMAN-UN R10C, FOXMAN-UN R9C; \n * UNEM product: UNEM R16A, UNEM R15B, UNEM R15A, UNEM R14B, UNEM R14A, UNEM R11B, UNEM R11A, UNEM R10C, UNEM R9C.\n\n\n\n\nList of CPEs: \n * cpe:2.3:a:hitachienergy:foxman-un:R16A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R15B:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R15A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R14B:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R14A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R11B:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R11A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R10C:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R9C:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R16A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R15B:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R15A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R14B:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R14A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R11B:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R11A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R10C:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R9C:*:*:*:*:*:*:*\n\n\n\n\n\n\n"
},
{
"lang": "es",
"value": "En la implementaci\u00f3n de DES, las versiones de producto afectadas utilizan una clave predeterminada para el cifrado. La explotaci\u00f3n exitosa permite a un atacante obtener informaci\u00f3n confidencial y acceso a los elementos de red administrados por las versiones de los productos afectados. Este problema afecta a: \n * FOXMAN-UN: FOXMAN-UN R16A, FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B, FOXMAN-UN R11A, FOXMAN-UN R10C, FOXMAN -ONU R9C;\n * UNEM: UNEM R16A, UNEM R15B, UNEM R15A, UNEM R14B, UNEM R14A, UNEM R11B, UNEM R11A, UNEM R10C, UNEM R9C.\n\nLista de CPE:\n * cpe:2.3:a:hitachienergy:foxman-un:R16A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R15B:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R15A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R14B:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R14A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R11B:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R11A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R10C:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:foxman-un:R9C:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R16A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R15B:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R15A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R14B:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R14A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R11B:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R11A:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R10C:*:*:*:*:*:*:*\n * cpe:2.3:a:hitachienergy:unem:R9C:*:*:*:*:*:*:* "
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "cybersecurity@hitachienergy.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.5,
"impactScore": 4.0
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "cybersecurity@hitachienergy.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-798"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-287"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:foxman-un:r9c:*:*:*:*:*:*:*",
"matchCriteriaId": "CF6EBF5E-662C-4B47-A683-05EBA284A1EA"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:foxman-un:r10c:*:*:*:*:*:*:*",
"matchCriteriaId": "900AF3F4-5C0B-48B9-91ED-5AABC42C0387"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:foxman-un:r11a:*:*:*:*:*:*:*",
"matchCriteriaId": "9CD89F83-BB89-45D4-BD95-7E9622C60948"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:foxman-un:r11b:*:*:*:*:*:*:*",
"matchCriteriaId": "33C7B43C-BC45-4151-BB30-9FBE9E737BE0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:foxman-un:r14a:*:*:*:*:*:*:*",
"matchCriteriaId": "F1338D86-A03D-4604-A6E5-31244F18D919"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:foxman-un:r14b:*:*:*:*:*:*:*",
"matchCriteriaId": "B93B58ED-E004-4B52-A691-C771B34DD9C8"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:foxman-un:r15a:*:*:*:*:*:*:*",
"matchCriteriaId": "A7593C74-2882-45D3-AB32-3A45E3AECAAE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:foxman-un:r15b:*:*:*:*:*:*:*",
"matchCriteriaId": "47606044-296D-4561-B9DC-82659BC666F2"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:foxman-un:r16a:*:*:*:*:*:*:*",
"matchCriteriaId": "7EE987B2-0620-44BB-AEA7-4E20CBE44822"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:unem:r9c:*:*:*:*:*:*:*",
"matchCriteriaId": "8FB66BE3-1031-4315-AF85-309BE3C35D7D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:unem:r10c:*:*:*:*:*:*:*",
"matchCriteriaId": "F6DF9081-1544-4A69-9D9E-80759289056B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:unem:r11a:*:*:*:*:*:*:*",
"matchCriteriaId": "C50E14E9-D2BF-4B6C-BF87-C9E4233D3AD0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:unem:r11b:*:*:*:*:*:*:*",
"matchCriteriaId": "996564C6-8B44-4E89-A353-79B711A3DBBA"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:unem:r14a:*:*:*:*:*:*:*",
"matchCriteriaId": "6AB8CF64-17F7-488D-9763-A1487ECA405D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:unem:r14b:*:*:*:*:*:*:*",
"matchCriteriaId": "6E96D583-2EBB-4AB2-A473-A0930E3B8D02"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:unem:r15a:*:*:*:*:*:*:*",
"matchCriteriaId": "E78C9E5B-5876-4F15-A98A-359193287446"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:unem:r15b:*:*:*:*:*:*:*",
"matchCriteriaId": "C3168F38-7B9E-4F4D-B6D0-1BAFB5FE05F5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hitachienergy:unem:r16a:*:*:*:*:*:*:*",
"matchCriteriaId": "7ABB4A53-07A0-4F9A-824B-A1AC71CCB44E"
}
]
}
]
}
],
"references": [
{
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000083&LanguageCode=en&DocumentPartId=&Action=Launch",
"source": "cybersecurity@hitachienergy.com",
"tags": [
"Mitigation",
"Vendor Advisory"
]
},
{
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000084&LanguageCode=en&DocumentPartId=&Action=Launch",
"source": "cybersecurity@hitachienergy.com",
"tags": [
"Mitigation",
"Vendor Advisory"
]
},
{
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000083&LanguageCode=en&DocumentPartId=&Action=Launch",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mitigation",
"Vendor Advisory"
]
},
{
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000084&LanguageCode=en&DocumentPartId=&Action=Launch",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mitigation",
"Vendor Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink