CVE-2024-40617
6.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
Path traversal vulnerability exists in FUJITSU Network Edgiot GW1500 (M2M-GW for FENICS). If a remote authenticated attacker with User Class privilege sends a specially crafted request to the affected product, access restricted files containing sensitive information may be accessed. As a result, Administrator Class privileges of the product may be hijacked.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Fujitsu Limited | FUJITSU Network Edgiot GW1500 (M2M-GW for FENICS) | prior to V02L19C01 | affected |
Weaknesses
- Path traversal
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://fenics.fujitsu.com/networkservice/m2m/download/update-m.html
- https://jvn.jp/en/jp/JVN25583987/
References
- https://fenics.fujitsu.com/networkservice/m2m/download/update-m.html
- https://jvn.jp/en/jp/JVN25583987/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.