Vulnerability Description
Path traversal vulnerability exists in FUJITSU Network Edgiot GW1500 (M2M-GW for FENICS). If a remote authenticated attacker with User Class privilege sends a specially crafted request to the affected product, access restricted files containing sensitive information may be accessed. As a result, Administrator Class privileges of the product may be hijacked.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fujitsu | Network Edgiot Gw1500 Firmware | < v02l19c01 |
| Fujitsu | Network Edgiot Gw1500 | - |
Related Weaknesses (CWE)
References
- https://fenics.fujitsu.com/networkservice/m2m/download/update-m.htmlPermissions Required
- https://jvn.jp/en/jp/JVN25583987/Third Party Advisory
- https://fenics.fujitsu.com/networkservice/m2m/download/update-m.htmlPermissions Required
- https://jvn.jp/en/jp/JVN25583987/Third Party Advisory
FAQ
What is CVE-2024-40617?
CVE-2024-40617 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Path traversal vulnerability exists in FUJITSU Network Edgiot GW1500 (M2M-GW for FENICS). If a remote authenticated attacker with User Class privilege sends a specially crafted request to the affected...
How severe is CVE-2024-40617?
CVE-2024-40617 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-40617?
Check the references section above for vendor advisories and patch information. Affected products include: Fujitsu Network Edgiot Gw1500 Firmware, Fujitsu Network Edgiot Gw1500.