CVE-2024-47044

CVSS V2 None CVSS V3 None

Description

Multiple Home GateWay/Hikari Denwa routers provided by NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION are vulnerable to insufficient access restrictions for Device Setting pages. If this vulnerability is exploited, an attacker who identified WAN-side IPv6 address may access the product's Device Setting page via WAN-side. Note that, the same products are also provided by NIPPON TELEGRAPH AND TELEPHONE WEST CORPORATION, but the vulnerability only affects products subscribed and used in NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION areas.

Overview

CVE ID
CVE-2024-47044

Assigner
jpcert

Vulnerability Status
PUBLISHED

Published Version
2024-09-26T08:34:30.347Z

Last Modified Date
2024-09-26T18:42:16.913Z

Weakness Enumerations

CWE	URL
CWE-451	http://cwe.mitre.org/data/definitions/451.html

References

Reference URL	Reference Tags
https://web116.jp/ced/support/version/broadband/rt_400mi/
https://web116.jp/ced/support/version/broadband/pr_400mi/
https://web116.jp/ced/support/version/broadband/rv_440mi/
https://web116.jp/ced/support/version/broadband/500mi/
https://web116.jp/ced/support/version/broadband/600mi/
https://jvn.jp/en/jp/JVN78356367/

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2024-47044
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-47044

History

Created	Old Value	New Value	Data Type	Notes
2024-10-06 13:46:56				Added to TrackCVE