Description

An unauthenticated remote attacker can read out sensitive device information through a incorrectly configured FTP service.

Related CPE's

o

pepperl-fuchs

oit700-f113-b12-cb_firmware

Vulnerable

h

pepperl-fuchs

oit700-f113-b12-cb

-

o

pepperl-fuchs

oit500-f113-b12-cb_firmware

Vulnerable

h

pepperl-fuchs

oit500-f113-b12-cb

-

o

pepperl-fuchs

oit200-f113-b12-cb_firmware

Vulnerable

h

pepperl-fuchs

oit200-f113-b12-cb

-

o

pepperl-fuchs

oit1500-f113-b12-cb_firmware

Vulnerable

h

pepperl-fuchs

oit1500-f113-b12-cb

-

References

https://cert.vde.com/en/advisories/VDE-2024-038

Third Party Advisory

Weaknesses

[email protected]

Primary
NVD-CWE-noinfo

[email protected]

Secondary
CWE-200

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.5 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2024-07-10T08:15:11.720

3 months ago

Last modified

2024-09-05T18:11:43.297

1 month ago