CVE-2024-24782

An unauthenticated attacker can send a ping request from one network to another through an error in the origin verification even though the ports are separated by VLAN.
References
Link Resource
https://cert.vde.com/en/advisories/VDE-2024-013 Mitigation Third Party Advisory
https://cert.vde.com/en/advisories/VDE-2024-013 Mitigation Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:hima:f30_03x_yy_\(com\)_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:f30_03x_yy_\(com\):-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:hima:f30_03x_yy_\(cpu\)_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:f30_03x_\(cpu\)_yy:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:hima:f35_03x_yy_\(com\)_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:f35_03x_yy_\(com\)_:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:hima:f35_03x_yy_\(cpu\)_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:f35_03x_yy_\(cpu\):-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:hima:f60_cpu_03x_yy_\(com\)_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:f60_cpu_03x_yy_\(com\):-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:hima:f60_cpu_03x_yy_\(cpu\)_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:f60_cpu_03x_yy_\(cpu\):-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:hima:f-com_01_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:f-com_01:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:hima:f-cpu_01_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:f-cpu_01:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:hima:x-com_01_e_yy_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:x-com_01_e_yy:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:hima:x-com_01_yy_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:x-com_01_yy:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:hima:x-cpu_01_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:x-cpu_01:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:hima:x-cpu_31_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:x-cpu_31:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:hima:x-sb_01_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:x-sb_01:-:*:*:*:*:*:*:*

History

21 Nov 2024, 08:59

Type Values Removed Values Added
References () https://cert.vde.com/en/advisories/VDE-2024-013 - Mitigation, Third Party Advisory () https://cert.vde.com/en/advisories/VDE-2024-013 - Mitigation, Third Party Advisory

18 Oct 2024, 19:01

Type Values Removed Values Added
First Time Hima x-sb 01 Firmware
Hima f-com 01
Hima f60 Cpu 03x Yy \(cpu\) Firmware
Hima f35 03x Yy \(com\) Firmware
Hima f60 Cpu 03x Yy \(com\) Firmware
Hima x-com 01 Yy
Hima x-cpu 31 Firmware
Hima f60 Cpu 03x Yy \(cpu\)
Hima f35 03x Yy \(com\)
Hima f30 03x Yy \(com\) Firmware
Hima
Hima x-com 01 E Yy Firmware
Hima x-cpu 01
Hima f30 03x Yy \(cpu\) Firmware
Hima f-cpu 01
Hima f35 03x Yy \(cpu\)
Hima x-com 01 E Yy
Hima f30 03x Yy \(com\)
Hima f-cpu 01 Firmware
Hima x-cpu 31
Hima x-sb 01
Hima f35 03x Yy \(cpu\) Firmware
Hima x-cpu 01 Firmware
Hima x-com 01 Yy Firmware
Hima f-com 01 Firmware
Hima f60 Cpu 03x Yy \(com\)
Hima f30 03x \(cpu\) Yy
References () https://cert.vde.com/en/advisories/VDE-2024-013 - () https://cert.vde.com/en/advisories/VDE-2024-013 - Mitigation, Third Party Advisory
CPE cpe:2.3:o:hima:f30_03x_yy_\(com\)_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:f-cpu_01:-:*:*:*:*:*:*:*
cpe:2.3:o:hima:x-cpu_01_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:x-cpu_01:-:*:*:*:*:*:*:*
cpe:2.3:h:hima:f35_03x_yy_\(com\)_:-:*:*:*:*:*:*:*
cpe:2.3:h:hima:f60_cpu_03x_yy_\(com\):-:*:*:*:*:*:*:*
cpe:2.3:h:hima:x-sb_01:-:*:*:*:*:*:*:*
cpe:2.3:o:hima:x-com_01_e_yy_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:hima:x-com_01_yy_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:x-com_01_yy:-:*:*:*:*:*:*:*
cpe:2.3:o:hima:x-sb_01_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:f35_03x_yy_\(cpu\):-:*:*:*:*:*:*:*
cpe:2.3:h:hima:f60_cpu_03x_yy_\(cpu\):-:*:*:*:*:*:*:*
cpe:2.3:h:hima:x-com_01_e_yy:-:*:*:*:*:*:*:*
cpe:2.3:h:hima:f-com_01:-:*:*:*:*:*:*:*
cpe:2.3:o:hima:f-com_01_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:hima:f30_03x_yy_\(cpu\)_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:x-cpu_31:-:*:*:*:*:*:*:*
cpe:2.3:o:hima:f-cpu_01_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:hima:f35_03x_yy_\(com\)_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:hima:f60_cpu_03x_yy_\(com\)_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:hima:f35_03x_yy_\(cpu\)_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hima:f30_03x_\(cpu\)_yy:-:*:*:*:*:*:*:*
cpe:2.3:h:hima:f30_03x_yy_\(com\):-:*:*:*:*:*:*:*
cpe:2.3:o:hima:f60_cpu_03x_yy_\(cpu\)_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:hima:x-cpu_31_firmware:*:*:*:*:*:*:*:*

13 Feb 2024, 14:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-02-13 14:15

Updated : 2024-11-21 08:59


NVD link : CVE-2024-24782

Mitre link : CVE-2024-24782

CVE.ORG link : CVE-2024-24782


JSON object : View

Products Affected

hima

  • x-com_01_yy
  • f30_03x_\(cpu\)_yy
  • f-com_01
  • x-cpu_31
  • x-com_01_e_yy_firmware
  • f30_03x_yy_\(com\)
  • f-cpu_01_firmware
  • x-sb_01
  • f30_03x_yy_\(cpu\)_firmware
  • x-cpu_01_firmware
  • x-com_01_e_yy
  • f35_03x_yy_\(cpu\)
  • f35_03x_yy_\(com\)_firmware
  • x-cpu_31_firmware
  • x-sb_01_firmware
  • f-cpu_01
  • x-cpu_01
  • f35_03x_yy_\(cpu\)_firmware
  • f35_03x_yy_\(com\)_
  • f60_cpu_03x_yy_\(com\)_firmware
  • f60_cpu_03x_yy_\(com\)
  • f60_cpu_03x_yy_\(cpu\)_firmware
  • x-com_01_yy_firmware
  • f-com_01_firmware
  • f60_cpu_03x_yy_\(cpu\)
  • f30_03x_yy_\(com\)_firmware
CWE
CWE-346

Origin Validation Error