CVE-2024-34024

Summary

Observable response discrepancy issue exists in ID Link Manager and FUJITSU Software TIME CREATOR. If this vulnerability is exploited, an unauthenticated remote attacker may determine if a username is valid or not.

Affected Software

VendorProductVersion RangeStatus
Fsas Technologies Inc.FUJITSU Business Application ID Link Manager IIV1.8 and earlieraffected
Fsas Technologies Inc.FUJITSU Software ID Link ManagerV2.0affected
Fsas Technologies Inc.FUJITSU Software TIME CREATOR ID Link ManagerV2.3.0affected
Fsas Technologies Inc.FUJITSU Software TIME CREATOR ID Link ManagerV2.3.1affected
Fsas Technologies Inc.FUJITSU Software TIME CREATOR ID Link ManagerV2.4affected
Fsas Technologies Inc.FUJITSU Software TIME CREATOR ID Link ManagerV2.5affected
Fsas Technologies Inc.FUJITSU Software TIME CREATOR ID Link ManagerV2.6affected
Fsas Technologies Inc.FUJITSU Software TIME CREATOR ID Link Managerand V2.7affected
Fsas Technologies Inc.FUJITSU Software TIME CREATOR ID Link ManagerV3.0affected
Fsas Technologies Inc.FUJITSU Software TIME CREATOR ID Link ManagerV3.0.2affected
Fsas Technologies Inc.FUJITSU Software TIME CREATOR ID Link ManagerV3.0.2.1affected
Fsas Technologies Inc.FUJITSU Software TIME CREATOR ID Link Managerand V3.0.3affected
Fsas Technologies Inc.FUJITSU Software TIME CREATOR ID Link Manager SaaSVersions before the maintenance on June 16affected
Fsas Technologies Inc.FUJITSU Software TIME CREATOR ID Link Manager SaaS2024affected

Weaknesses

  • Observable response discrepancy

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References