A vulnerability exists in the FOXMAN-UN/UNEM server that affects the message
queueing mechanism’s certificate validation. If exploited an attacker could spoof a trusted entity causing a loss of confidentiality
and integrity.
References
Link | Resource |
---|---|
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true | Vendor Advisory |
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
15 Aug 2024, 21:29
Type | Values Removed | Values Added |
---|---|---|
First Time |
Hitachienergy foxman Un
Hitachienergy unem Hitachienergy Hitachienergy foxman-un |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.4 |
References | () https://publisher.hitachienergy.com/preview?DocumentId=8DBD000194&languageCode=en&Preview=true - Vendor Advisory | |
References | () https://publisher.hitachienergy.com/preview?DocumentId=8DBD000201&languageCode=en&Preview=true - Vendor Advisory | |
CPE | cpe:2.3:a:hitachienergy:foxman-un:r15b:pc4:*:*:*:*:*:* cpe:2.3:a:hitachienergy:unem:r15b:pc4:*:*:*:*:*:* cpe:2.3:a:hitachienergy:foxman_un:r16a:*:*:*:*:*:*:* cpe:2.3:a:hitachienergy:foxman-un:r16b:pc2:*:*:*:*:*:* cpe:2.3:a:hitachienergy:unem:r15a:*:*:*:*:*:*:* cpe:2.3:a:hitachienergy:foxman_un:r15a:*:*:*:*:*:*:* cpe:2.3:a:hitachienergy:unem:r16a:*:*:*:*:*:*:* cpe:2.3:a:hitachienergy:unem:r16b:pc2:*:*:*:*:*:* |
12 Jun 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
|
Summary | (en) A vulnerability exists in the FOXMAN-UN/UNEM server that affects the message queueing mechanism’s certificate validation. If exploited an attacker could spoof a trusted entity causing a loss of confidentiality and integrity. |
11 Jun 2024, 14:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-06-11 14:15
Updated : 2024-10-29 15:15
NVD link : CVE-2024-28021
Mitre link : CVE-2024-28021
CVE.ORG link : CVE-2024-28021
JSON object : View
Products Affected
hitachienergy
- foxman-un
- foxman_un
- unem
CWE
CWE-295
Improper Certificate Validation