AIPHONE IXG SYSTEM IXG-2C7 firmware Ver.2.03 and earlier... · CVE-2024-47142 · GitHub Advisory Database · GitHub

AIPHONE IXG SYSTEM IXG-2C7 firmware Ver.2.03 and earlier...

Moderate severity Unreviewed Published Nov 22, 2024 to the GitHub Advisory Database • Updated Nov 22, 2024

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

AIPHONE IXG SYSTEM IXG-2C7 firmware Ver.2.03 and earlier and IXG-2C7-L firmware Ver.2.03 and earlier contain an issue with insufficiently protected credentials, which may allow a network-adjacent authenticated attacker to perform unintended operations.

References

Published by the National Vulnerability Database

Nov 22, 2024

Published to the GitHub Advisory Database Nov 22, 2024

Last updated Nov 22, 2024

Severity

Moderate

/ 10

CVSS v3 base metrics

Attack vector

Adjacent

Attack complexity

Low

Privileges required

Low

User interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

Low

CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L