CVE-2024-12533

Summary

Improper Check for Unusual or Exceptional Conditions vulnerability in Phoenix SecureCore Technology 4 allows Input Data Manipulation.This issue affects SecureCore Technology 4: from 4.0.1.0 before 4.0.1.1018, from 4.1.0.1 before 4.1.0.573, from 4.2.0.1 before 4.2.0.338, from 4.2.1.1 before 4.2.1.300, from 4.3.0.1 before 4.3.0.244, from 4.3.1.1 before 4.3.1.187, from 4.4.0.1 before 4.4.0.299, from 4.5.0.1 before 4.5.0.231, from 4.5.1.1 before 4.5.1.103, from 4.5.5.1 before 4.5.5.36, from 4.6.0.1 before 4.6.0.67.

Affected Software

VendorProductVersion RangeStatus
PhoenixSecureCore Technology 44.0.1.0 < 4.0.1.1018affected
PhoenixSecureCore Technology 44.1.0.1 < 4.1.0.573affected
PhoenixSecureCore Technology 44.2.0.1 < 4.2.0.338affected
PhoenixSecureCore Technology 44.2.1.1 < 4.2.1.300affected
PhoenixSecureCore Technology 44.3.0.1 < 4.3.0.244affected
PhoenixSecureCore Technology 44.3.1.1 < 4.3.1.187affected
PhoenixSecureCore Technology 44.4.0.1 < 4.4.0.299affected
PhoenixSecureCore Technology 44.5.0.1 < 4.5.0.231affected
PhoenixSecureCore Technology 44.5.1.1 < 4.5.1.103affected
PhoenixSecureCore Technology 44.5.5.1 < 4.5.5.36affected
PhoenixSecureCore Technology 44.6.0.1 < 4.6.0.67affected

Weaknesses

  • CWE-754: CWE-754 Improper Check for Unusual or Exceptional Conditions

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References