CVE-2024-27774

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-259: Use of Hard-coded Password may allow disclosing Sensitive Information Embedded inside Device's Firmware
Configurations

Configuration 1 (hide)

cpe:2.3:a:unitronics:unilogic:*:*:*:*:*:*:*:*

History

10 Mar 2025, 18:34

Type Values Removed Values Added
References () https://claroty.com/team82/blog/new-critical-vulnerabilities-in-unitronics-unistream-devices-uncovered - () https://claroty.com/team82/blog/new-critical-vulnerabilities-in-unitronics-unistream-devices-uncovered - Third Party Advisory
References () https://www.gov.il/en/departments/dynamiccollectors/cve_advisories_listing?skip=0 - () https://www.gov.il/en/departments/dynamiccollectors/cve_advisories_listing?skip=0 - Third Party Advisory
CWE CWE-798
First Time Unitronics
Unitronics unilogic
CPE cpe:2.3:a:unitronics:unilogic:*:*:*:*:*:*:*:*

21 Nov 2024, 09:05

Type Values Removed Values Added
Summary
  • (es) Unitronics Unistream Unilogic - Versiones anteriores a 1.35.227 - CWE-259: el uso de una contraseña codificada puede permitir la divulgación de información confidencial integrada en el firmware del dispositivo
References () https://claroty.com/team82/blog/new-critical-vulnerabilities-in-unitronics-unistream-devices-uncovered - () https://claroty.com/team82/blog/new-critical-vulnerabilities-in-unitronics-unistream-devices-uncovered -
References () https://www.gov.il/en/departments/dynamiccollectors/cve_advisories_listing?skip=0 - () https://www.gov.il/en/departments/dynamiccollectors/cve_advisories_listing?skip=0 -

18 Mar 2024, 14:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-03-18 14:15

Updated : 2025-03-10 18:34


NVD link : CVE-2024-27774

Mitre link : CVE-2024-27774

CVE.ORG link : CVE-2024-27774


JSON object : View

Products Affected

unitronics

  • unilogic
CWE
CWE-259

Use of Hard-coded Password

CWE-798

Use of Hard-coded Credentials