CVE-2024-8455
8.1
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
The swctrl service is used to detect and remotely manage PLANET Technology devices. For certain switch models, the authentication tokens used during communication with this service are encoded user passwords. Due to insufficient strength, unauthorized remote attackers who intercept the packets can directly crack them to obtain plaintext passwords.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| PLANET Technology | GS-4210-24PL4C hardware 2.0 | 0 < 2.305b240719 | affected |
| PLANET Technology | GS-4210-24P2S hardware 3.0 | 0 < 3.305b240802 | affected |
| PLANET Technology | IGS-5225-4UP1T2S hardware 1.0 | 0 | affected |
Weaknesses
- CWE-261: CWE-261 Weak Encoding for Password
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
- https://www.twcert.org.tw/tw/cp-132-8059-bde5f-1.html
- https://www.twcert.org.tw/en/cp-139-8060-f3955-2.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.