Profile files from TRO600 series radios are extracted in plain-text
and encrypted file formats. Profile files provide potential attackers
valuable configuration information about the Tropos network. Profiles
can only be exported by authenticated users with higher privilege of write access.
References
Link | Resource |
---|---|
https://publisher.hitachienergy.com/preview?DocumentID=8DBD000147&LanguageCode=en&DocumentPartId=&Action=launch | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
History
04 Dec 2024, 11:30
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 2.7 |
Summary | (en) Profile files from TRO600 series radios are extracted in plain-text and encrypted file formats. Profile files provide potential attackers valuable configuration information about the Tropos network. Profiles can only be exported by authenticated users with higher privilege of write access. |
31 Oct 2024, 14:49
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:h:hitachienergy:tro610:-:*:*:*:*:*:*:* cpe:2.3:h:hitachienergy:tro620:-:*:*:*:*:*:*:* cpe:2.3:h:hitachienergy:tro670:-:*:*:*:*:*:*:* cpe:2.3:o:hitachienergy:tro620_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:hitachienergy:tro670_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:hitachienergy:tro610_firmware:*:*:*:*:*:*:*:* |
|
References | () https://publisher.hitachienergy.com/preview?DocumentID=8DBD000147&LanguageCode=en&DocumentPartId=&Action=launch - Vendor Advisory | |
First Time |
Hitachienergy
Hitachienergy tro670 Hitachienergy tro610 Firmware Hitachienergy tro670 Firmware Hitachienergy tro620 Firmware Hitachienergy tro620 Hitachienergy tro610 |
|
Summary |
|
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.3 |
29 Oct 2024, 13:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-10-29 13:15
Updated : 2024-12-05 15:29
NVD link : CVE-2024-41156
Mitre link : CVE-2024-41156
CVE.ORG link : CVE-2024-41156
JSON object : View
Products Affected
hitachienergy
- tro670
- tro610
- tro620_firmware
- tro610_firmware
- tro620
- tro670_firmware
CWE
CWE-212
Improper Removal of Sensitive Information Before Storage or Transfer