CVE-2024-9928
CVSS V2 None
CVSS V3 None
Description
A vulnerability exists in NSD570 login panel that does not restrict excessive authentication attempts. If exploited, this could
cause account takeover and unauthorized access to the system
when an attacker conducts brute-force attacks against the
equipment login. Note that the system supports only one concurrent session and implements a delay of more than a second
between failed login attempts making it difficult to automate the
attacks.
Overview
- CVE ID
- CVE-2024-9928
- Assigner
- Hitachi Energy
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-11-26T13:26:58.145Z
- Last Modified Date
- 2024-11-26T16:11:19.880Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://publisher.hitachienergy.com/preview?DocumentID=8DBD000173&LanguageCode=en&DocumentPartId=&Action=launch | vendor-advisory |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-9928 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9928 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-11-27 13:31:48 | Added to TrackCVE |