CVE-2024-39838

Aug. 5, 2024, 12:41 p.m.

Tags

vultures@jpcert.or.jp
2024-08-05
CVE-2024-39838

Product(s) Impacted

ZWX-2000CSW2-HN firmware

  • before Ver.0.3.15

Description

ZWX-2000CSW2-HN firmware versions prior to Ver.0.3.15 uses hard-coded credentials, which may allow a network-adjacent attacker with an administrative privilege to alter the configuration of the device.

Weaknesses

Date

Published: Aug. 5, 2024, 5:15 a.m.

Last Modified: Aug. 5, 2024, 12:41 p.m.

Status : Undergoing Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

vultures@jpcert.or.jp

References

https://jvn.jp/en/jp/JVN70666401/
vultures@jpcert.or.jp
https://www.zexelon.co.jp/pdf/jvn70666401.pdf
vultures@jpcert.or.jp