CVE-2024-24781

Summary

An unauthenticated remote attacker can use an uncontrolled resource consumption vulnerability to DoS the affected devices through excessive traffic on a single ethernet port. 

Affected Software

VendorProductVersion RangeStatus
HIMAF30 03X YY (COM)0 <= 24.14affected
HIMAF30 03X YY (CPU)0 <= 18.6affected
HIMAF35 03X YY (COM)0 <= 24.14affected
HIMAF35 03X YY (CPU)0 <= 18.6affected
HIMAF60 CPU 03X YY (COM)0 <= 24.14affected
HIMAF60 CPU 03X YY (CPU)0 <= 18.6affected
HIMAF-COM 010 <= 14.12affected
HIMAF-COM 01 coated0 <= 14.12affected
HIMAF-CPU 010 <= 14.6affected
HIMAF-CPU 01 coated0 <= 14.6affected
HIMAX-COM 01 E YY0 <= 15.14affected
HIMAX-COM 01 YY0 <= 14.12affected
HIMAX-CPU 010 <= 14.6affected
HIMAX-CPU 310 <= 14.6affected
HIMAX-SB 010 <= 7.54affected

Weaknesses

  • CWE-400: CWE-400 Uncontrolled Resource Consumption

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References