CVE-2024-28021

A vulnerability exists in the FOXMAN-UN/UNEM server that affects the message queueing mechanism’s certificate validation. If exploited an attacker could spoof a trusted entity causing a loss of confidentiality and integrity.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:hitachienergy:foxman-un:r15b:pc4:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:foxman-un:r16b:pc2:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:foxman_un:r15a:*:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:foxman_un:r16a:*:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:unem:r15a:*:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:unem:r15b:pc4:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:unem:r16a:*:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:unem:r16b:pc2:*:*:*:*:*:*

History

15 Aug 2024, 21:29

Type Values Removed Values Added
First Time Hitachienergy unem
Hitachienergy
Hitachienergy foxman-un
Hitachienergy foxman Un
CPE cpe:2.3:a:hitachienergy:foxman-un:r16b:pc2:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:unem:r16b:pc2:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:unem:r15b:pc4:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:unem:r16a:*:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:unem:r15a:*:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:foxman_un:r16a:*:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:foxman-un:r15b:pc4:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:foxman_un:r15a:*:*:*:*:*:*:*
References () https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true - () https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true - Vendor Advisory
References () https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true - () https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true - Vendor Advisory
CVSS v2 : unknown
v3 : 8.0
v2 : unknown
v3 : 7.4

12 Jun 2024, 15:15

Type Values Removed Values Added
Summary
  • (es) Existe una vulnerabilidad en el servidor FOXMAN-UN/UNEM que afecta la validación de certificados del mecanismo de cola de mensajes. Si se explota, un atacante podría falsificar una entidad confiable y provocar una pérdida de confidencialidad e integridad.
Summary (en) A vulnerability exists in the FOXMAN-UN/UNEM server that affects the message queueing mechanism’s certificate validation. If exploited an attacker could spoof a trusted entity causing a loss of confidentiality and integrity. (en) A vulnerability exists in the FOXMAN-UN/UNEM server that affects the message queueing mechanism’s certificate validation. If exploited an attacker could spoof a trusted entity causing a loss of confidentiality and integrity.

11 Jun 2024, 14:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-06-11 14:15

Updated : 2024-10-29 15:15


NVD link : CVE-2024-28021

Mitre link : CVE-2024-28021

CVE.ORG link : CVE-2024-28021


JSON object : View

Products Affected

hitachienergy

  • foxman-un
  • unem
  • foxman_un
CWE
CWE-295

Improper Certificate Validation