CVE-2024-2244

EUVD-2024-27200
REST service authentication anomaly with “valid username/no password” credential combination for batch job processing resulting in successful service invocation. The anomaly doesn’t exist with other credential combinations.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 38%
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
hitachienergyasset_suite
9.6.3.0 ≤
𝑥
< 9.6.3.13
ADP
hitachienergyasset_suite
9.6.4.0 ≤
𝑥
< 9.6.4.1
ADP
Common Weakness Enumeration
References
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000195&languageCode=en&Preview=true
https://publisher.hitachienergy.com/preview?DocumentId=8DBD000195&languageCode=en&Preview=true