CVE-2024-22028

EUVD-2024-19634
Insufficient technical documentation issue exists in thermal camera TMC series all firmware versions. The user of the affected product is not aware of the internally saved data. By accessing the affected product physically, an attacker may retrieve the internal data.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.6 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CISA-ADPADP
4.6 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 13%
Affected Products (NVD)
VendorProductVersion
3rrr-btob3r-tmc01_firmware
*
3rrr-btob3r-tmc02_firmware
*
3rrr-btob3r-tmc03_firmware
*
3rrr-btob3r-tmc04_firmware
*
3rrr-btob3r-tmc05_firmware
*
3rrr-btob3r-tmc06_firmware
*
𝑥
= Vulnerable software versions
References
https://3rrr-btob.jp/archives/news/23624
https://jvn.jp/en/jp/JVN96240417/
https://3rrr-btob.jp/archives/news/23624
https://jvn.jp/en/jp/JVN96240417/