Today > | 1 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-41720

Aug. 5, 2024, 12:41 p.m.

Product(s) Impacted

ZWX-2000CSW2-HN

  • before Ver.0.3.15

Description

Incorrect permission assignment for critical resource issue exists in ZWX-2000CSW2-HN firmware versions prior to Ver.0.3.15, which may allow a network-adjacent authenticated attacker to alter the configuration of the device.

Weaknesses

Date

Published: Aug. 5, 2024, 5:15 a.m.

Last Modified: Aug. 5, 2024, 12:41 p.m.

Status : Undergoing Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

vultures@jpcert.or.jp

References

https://jvn.jp/ vultures@jpcert.or.jp

https://www.zexelon.co.jp/ vultures@jpcert.or.jp