Lucene search
DragosCVELIST:CVE-2024-1480HistoryApr 19, 2024 - 9:19 p.m.
CVE-2024-1480 Unitronics Vision Standard Unauthenticated Password Retrieval
2024-04-1921:19:27
CWE-257
Dragos
www.cve.org
unitronics vision standard
information mode password
unauthenticated retrieval
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.0004 Low
EPSS
Percentile
9.2%
Unitronics Vision Standard line of controllers allow the Information Mode password to be retrieved without authentication.
CNA Affected
[
{
"defaultStatus": "affected",
"product": "Vision230",
"vendor": "Unitronics",
"versions": [
{
"status": "affected",
"version": "0"
}
]
},
{
"defaultStatus": "affected",
"product": "Vision280",
"vendor": "Unitronics",
"versions": [
{
"status": "affected",
"version": "0"
}
]
},
{
"defaultStatus": "affected",
"product": "Vision290",
"vendor": "Unitronics",
"versions": [
{
"status": "affected",
"version": "0"
}
]
},
{
"defaultStatus": "affected",
"product": "Vision530",
"vendor": "Unitronics",
"versions": [
{
"status": "affected",
"version": "0"
}
]
},
{
"defaultStatus": "affected",
"product": "Vision120",
"vendor": "Unitronics",
"versions": [
{
"status": "affected",
"version": "0"
}
]
}
]Related
cve
cve
CVE-2024-1480
2024-04-19 22:15:07
nvd
nvd
CVE-2024-1480
2024-04-19 22:15:07
ics
ics
Unitronics Vision Legacy Series (Update A)
2024-04-30 12:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.0004 Low
EPSS
Percentile
9.2%
Related for CVELIST:CVE-2024-1480