CVE-2024-22028

Insufficient technical documentation issue exists in thermal camera TMC series all firmware versions. The user of the affected product is not aware of the internally saved data. By accessing the affected product physically, an attacker may retrieve the internal data.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.6 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
jpcertCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 7%
VendorProductVersion
3rrr-btob3r-tmc01_firmware
*
3rrr-btob3r-tmc02_firmware
*
3rrr-btob3r-tmc03_firmware
*
3rrr-btob3r-tmc04_firmware
*
3rrr-btob3r-tmc05_firmware
*
3rrr-btob3r-tmc06_firmware
*
𝑥
= Vulnerable software versions
References
https://3rrr-btob.jp/archives/news/23624
https://jvn.jp/en/jp/JVN96240417/
https://3rrr-btob.jp/archives/news/23624
https://jvn.jp/en/jp/JVN96240417/