Security Advisory

CVE-2024-47902

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-10-23 14:21:20

Last updated 2024-10-23 18:16:39

Assigner siemens

State PUBLISHED

Description

A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2.12), InterMesh 7707 Fire Subscriber (All versions < V7.2.12 only if the IP interface is enabled (which is not the default configuration)). The web server of affected devices does not authenticate GET requests that execute specific commands (such as `ping`) on operating system level.

← Browse all CVEs View on cve.org ↗