CVE-2024-8452

Certain switch models from PLANET Technology only support obsolete algorithms for authentication protocol and encryption protocol in the SNMPv3 service, allowing attackers to obtain plaintext SNMPv3 credentials potentially.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:planet:gs-4210-24p2s_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:planet:gs-4210-24p2s:3.0:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:planet:gs-4210-24pl4c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:planet:gs-4210-24pl4c:2.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2024-09-30 07:15

Updated : 2024-10-04 15:10


NVD link : CVE-2024-8452

Mitre link : CVE-2024-8452

CVE.ORG link : CVE-2024-8452


JSON object : View

Products Affected

planet

  • gs-4210-24pl4c
  • gs-4210-24pl4c_firmware
  • gs-4210-24p2s
  • gs-4210-24p2s_firmware
CWE
CWE-327

Use of a Broken or Risky Cryptographic Algorithm

CWE-328

Use of Weak Hash