CVE-2024-6421

An unauthenticated remote attacker can read out sensitive device information through a incorrectly configured FTP service.
References
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:pepperl-fuchs:oit700-f113-b12-cb_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:pepperl-fuchs:oit700-f113-b12-cb:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:pepperl-fuchs:oit500-f113-b12-cb_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:pepperl-fuchs:oit500-f113-b12-cb:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:pepperl-fuchs:oit200-f113-b12-cb_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:pepperl-fuchs:oit200-f113-b12-cb:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:pepperl-fuchs:oit1500-f113-b12-cb_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:pepperl-fuchs:oit1500-f113-b12-cb:-:*:*:*:*:*:*:*

History

21 Nov 2024, 09:49

Type Values Removed Values Added
References () https://cert.vde.com/en/advisories/VDE-2024-038 - Third Party Advisory () https://cert.vde.com/en/advisories/VDE-2024-038 - Third Party Advisory

05 Sep 2024, 18:11

Type Values Removed Values Added
References () https://cert.vde.com/en/advisories/VDE-2024-038 - () https://cert.vde.com/en/advisories/VDE-2024-038 - Third Party Advisory
CPE cpe:2.3:o:pepperl-fuchs:oit700-f113-b12-cb_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:pepperl-fuchs:oit1500-f113-b12-cb:-:*:*:*:*:*:*:*
cpe:2.3:o:pepperl-fuchs:oit1500-f113-b12-cb_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:pepperl-fuchs:oit500-f113-b12-cb_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:pepperl-fuchs:oit200-f113-b12-cb_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:pepperl-fuchs:oit500-f113-b12-cb:-:*:*:*:*:*:*:*
cpe:2.3:h:pepperl-fuchs:oit700-f113-b12-cb:-:*:*:*:*:*:*:*
cpe:2.3:h:pepperl-fuchs:oit200-f113-b12-cb:-:*:*:*:*:*:*:*
CWE NVD-CWE-noinfo
First Time Pepperl-fuchs oit1500-f113-b12-cb
Pepperl-fuchs oit500-f113-b12-cb Firmware
Pepperl-fuchs oit500-f113-b12-cb
Pepperl-fuchs
Pepperl-fuchs oit1500-f113-b12-cb Firmware
Pepperl-fuchs oit700-f113-b12-cb
Pepperl-fuchs oit200-f113-b12-cb Firmware
Pepperl-fuchs oit700-f113-b12-cb Firmware
Pepperl-fuchs oit200-f113-b12-cb

11 Jul 2024, 13:05

Type Values Removed Values Added
Summary
  • (es) Un atacante remoto no autenticado puede leer información confidencial del dispositivo a través de un servicio FTP configurado incorrectamente.

10 Jul 2024, 08:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-07-10 08:15

Updated : 2024-11-21 09:49


NVD link : CVE-2024-6421

Mitre link : CVE-2024-6421

CVE.ORG link : CVE-2024-6421


JSON object : View

Products Affected

pepperl-fuchs

  • oit700-f113-b12-cb_firmware
  • oit500-f113-b12-cb
  • oit200-f113-b12-cb
  • oit1500-f113-b12-cb_firmware
  • oit200-f113-b12-cb_firmware
  • oit1500-f113-b12-cb
  • oit700-f113-b12-cb
  • oit500-f113-b12-cb_firmware
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

NVD-CWE-noinfo