CVE-2024-22028

Summary

Insufficient technical documentation issue exists in thermal camera TMC series all firmware versions. The user of the affected product is not aware of the internally saved data. By accessing the affected product physically, an attacker may retrieve the internal data.

Affected Software

VendorProductVersion RangeStatus
THREE R SOLUTION CORP. JAPAN3R-TMC01all firmware versionsaffected
THREE R SOLUTION CORP. JAPAN3R-TMC02all firmware versionsaffected
THREE R SOLUTION CORP. JAPAN3R-TMC03all firmware versionsaffected
THREE R SOLUTION CORP. JAPAN3R-TMC04all firmware versionsaffected
THREE R SOLUTION CORP. JAPAN3R-TMC05all firmware versionsaffected
THREE R SOLUTION CORP. JAPAN3R-TMC06all firmware versionsaffected

Weaknesses

  • Insufficient verification of data authenticity

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References