CVE-2024-28894

Out-of-bounds read vulnerability caused by improper checking of the option length values in IPv6 headers exists in Cente middleware TCP/IP Network Series, which may allow an unauthenticated attacker to stop the device operations by sending a specially crafted packet.

CVSS v3 5.3 MEDIUM

5.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://jvn.jp/en/vu/JVNVU94016877/	Third Party Advisory
https://www.cente.jp/obstacle/4960/	Vendor Advisory
https://jvn.jp/en/vu/JVNVU94016877/	Third Party Advisory
https://www.cente.jp/obstacle/4960/	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:nxtech:cente_ipv6::::::::
	cpe:2.3:a:nxtech:cente_ipv6_snmpv2::::::::
	cpe:2.3:a:nxtech:cente_ipv6_snmpv3::::::::

History

30 Jun 2025, 13:34

Type	Values Removed	Values Added
First Time		Nxtech cente Ipv6 Nxtech cente Ipv6 Snmpv3 Nxtech cente Ipv6 Snmpv2 Nxtech
CPE		cpe:2.3:a:nxtech:cente_ipv6:::::::: cpe:2.3:a:nxtech:cente_ipv6_snmpv2:::::::: cpe:2.3:a:nxtech:cente_ipv6_snmpv3::::::::
References	~~() https://jvn.jp/en/vu/JVNVU94016877/ -~~	() https://jvn.jp/en/vu/JVNVU94016877/ - Third Party Advisory
References	~~() https://www.cente.jp/obstacle/4960/ -~~	() https://www.cente.jp/obstacle/4960/ - Vendor Advisory

Information

Published : 2024-04-15 11:15

Updated : 2025-06-30 13:34

NVD link : CVE-2024-28894

Mitre link : CVE-2024-28894

CVE.ORG link : CVE-2024-28894

JSON object : View

Products Affected

nxtech

cente_ipv6_snmpv3
cente_ipv6
cente_ipv6_snmpv2

CWE

CWE-125

Out-of-bounds Read

{"id": "CVE-2024-28894", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2024-04-15T11:15:08.440", "references": [{"url": "https://jvn.jp/en/vu/JVNVU94016877/", "tags": ["Third Party Advisory"], "source": "vultures@jpcert.or.jp"}, {"url": "https://www.cente.jp/obstacle/4960/", "tags": ["Vendor Advisory"], "source": "vultures@jpcert.or.jp"}, {"url": "https://jvn.jp/en/vu/JVNVU94016877/", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.cente.jp/obstacle/4960/", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-125"}]}], "descriptions": [{"lang": "en", "value": "Out-of-bounds read vulnerability caused by improper checking of the option length values in IPv6 headers exists in Cente middleware TCP/IP Network Series, which may allow an unauthenticated attacker to stop the device operations by sending a specially crafted packet."}, {"lang": "es", "value": "Existe una vulnerabilidad de lectura fuera de los l\u00edmites causada por una verificaci\u00f3n incorrecta de los valores de longitud de las opciones en los encabezados IPv6 en la serie de redes TCP/IP del middleware Cente, que puede permitir que un atacante no autenticado detenga las operaciones del dispositivo enviando un paquete especialmente manipulado."}], "lastModified": "2025-06-30T13:34:04.667", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:nxtech:cente_ipv6:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5D29307C-6D00-4A45-ACAB-23F7BFEC8EFF", "versionEndIncluding": "1.51"}, {"criteria": "cpe:2.3:a:nxtech:cente_ipv6_snmpv2:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7937B3BF-CFFD-47A5-A76A-692F4D5F4C95", "versionEndIncluding": "2.30"}, {"criteria": "cpe:2.3:a:nxtech:cente_ipv6_snmpv3:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EFB0C9DD-AEE3-4C4C-93BD-A717EE4C29E3", "versionEndIncluding": "2.30"}], "operator": "OR"}]}], "sourceIdentifier": "vultures@jpcert.or.jp"}