CVE-2024-9929 MEDIUM

Published: 2024-11-26 | Last Modified: 2026-04-15 | Status: Deferred

Description

A vulnerability exists in NSD570 that allows any authenticated user to access all device logs disclosing login information with timestamps.

Additional Descriptions (1)

Existe una vulnerabilidad en NSD570 que permite a cualquier usuario autenticado acceder a todos los registros del dispositivo revelando información de inicio de sesión con marcas de tiempo.

CVSS Metrics

Base Score: 4.3 (MEDIUM)

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Attack Vector	NETWORK
Attack Complexity	LOW
Privileges Required	LOW
User Interaction	NONE
Scope	UNCHANGED
Confidentiality Impact	LOW
Integrity Impact	NONE
Availability Impact	NONE

Source: [email protected]

Type: Secondary

Exploitability Score: 2.8

Impact Score: 1.4

Weaknesses

Source	Type	Description
[email protected]	Secondary	en CWE-497

References

https://publisher.hitachienergy.com/preview?DocumentID=8DBD000173&LanguageCode=en&DocumentPartId=&Action=launch
Source: [email protected]