CVE-2024-41927
4.6
Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 0.9 / Impact: 3.6
Source: NVD
Description
Cleartext transmission of sensitive information vulnerability exists in multiple IDEC PLCs. If an attacker sends a specific command to PLC's serial communication port, user credentials may be obtained. As a result, the program of the PLC may be obtained, and the PLC may be manipulated.
Affected (91)
Products: Idec: Kit Fc6a 24 Kc Firmware, Kit Fc6a 24 Pc Firmware, Kit Fc6a 24 Ra Firmware, Kit Fc6a 24 Ra Hg1g Firmware, Kit Fc6a 24 Ra Hg2g 5tn Firmware, Kit Fc6a 24 Ra Hg2g 5tt Firmware, Kit Fc6a 24 Rc Hg1g Firmware, Kit Fc6a 24 Rc Firmware, Kit Fc6a 24 Rc Hg2g 5tn Firmware, Kit Fc6a 24 Rc Hg2g 5tt Firmware, Kit Fc6a C24r Hg2g Vhp Firmware, Kit Fc6a C24r Hg3g V8hp Firmware, Kit Fc6a C24r Hg3g Vahp Firmware, Kit Fc6a C24r Hg4g Vhp Firmware, Kit Fc6a C24r Hg5g Vhp Firmware, Kit Fc6a 16 Pc Firmware, Kit Fc6a 16 Ra Firmware, Kit Fc6a 16 Kc Firmware, Kit Fc6a 16 Ra Hg1g Firmware, Kit Fc6a 16 Ra Hg2g 5tn Firmware, Kit Fc6a 16 Ra Hg2g 5tt Firmware, Kit Fc6a 16 Rc Firmware, Kit Fc6a 16 Rc Hg2g 5tn Firmware, Kit Fc6a 16 Rc Hg1g Firmware, Kit Fc6a 16 Rc Hg2g 5tt Firmware, Kit Fc6a 16 Kd Firmware, Kit Fc6a 16 Pd Firmware, Kit Fc6a C16r Hg2g Vhp Firmware, Kit Fc6a C16r Hg3g V8hp Firmware, Kit Fc6a C16r Hg3g Vahp Firmware, Kit Fc6a C16r Hg5g Vhp Firmware, Kit Fc6a 16 Rd Firmware, Kit Fc6a 40 Kd Firmware, Kit Fc6a 40 Pc Firmware, Kit Fc6a 40 Pd Firmware, Kit Fc6a 40 Ra Firmware, Kit Fc6a 40 Rd Firmware, Kit Fc6a 40 Rc Firmware, Kit Fc6a D16p Hg1g Firmware, Kit Fc6a D16p Hg2g 5tn Firmware, Kit Fc6a D16p Hg2g 5tt Firmware, Kit Fc6a D16r Hg2g 5tn Firmware, Kit Fc6a D16r Hg2g 5tt Firmware, Kit Fc6a D16r Hg3g V8hp Firmware, Kit Fc6a D16r Hg3g Vahp Firmware, Kit Fc6a D16r Hg4g Vhp Firmware, Kit Fc6a D16r Hg5g Vhp Firmware, Kit Fc6a D16r Hg1g Firmware, Kit Fc6a D16r Hg2g Vhp Firmware, Kit Fc6a P16 K Firmware, Kit Fc6a P16 R Firmware, Kit Fc6a P16 S Firmware, Ft1a H12ra Firmware, Ft1a H24ra Firmware, Ft1a H24rc Firmware, Ft1a H12rc Firmware, Ft1a B12ra Firmware, Ft1a B24ra Firmware, Kit Smart 12 Bac Firmware, Kit Smart 12 Hac Firmware, Kit Smart 12 Bdc Firmware, Kit Smart 12 Hdc Firmware, Kit Smart 24 Hac Firmware, Kit Smart 24 Bac Firmware, Kit Smart 24 Bdc Firmware, Kit Smart 24 Hdc Firmware, Kit Smart 40 Bac R Firmware, Kit Smart 40 Bdc Rk Firmware, Kit Smart 40 Bdc Rs Firmware, Kit Smart 40 Hac R Firmware, Kit Smart 40 Hdc Rk Firmware, Kit Smart 48 Bac K Firmware, Kit Smart 40 Hdc Rs Firmware, Kit Smart 48 Bac S Firmware, Kit Smart 48 Bdc K Firmware, Kit Smart 48 Hac S Firmware, Kit Smart 48 Hac K Firmware, Kit Smart 48 Hdc S Firmware, Kit Smart 48 Bdc S Firmware, Ft1a Pc1 Firmware, Ft1a Pc2 Firmware, Ft1a Pc3 Firmware, Ft1a Pm1 Firmware, Ft9z 1a01 Firmware, Ft9z Psp1pn05 Firmware, Hg9z Xcm2a Firmware, Kit Fc6a D32p Hg1g Firmware, Kit Fc6a D32p Hg2g 5tn Firmware, Kit Fc6a D32p Hg2g 5tt Firmware, Kit Fc6a P32 K Firmware, Kit Fc6a P32 S Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 24 Kc | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 24 Pc | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 24 Ra | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 24 Ra Hg1g | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 24 Ra Hg2g 5tn | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 24 Ra Hg2g 5tt | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 24 Rc Hg1g | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 24 Rc | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 24 Rc Hg2g 5tn | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 24 Rc Hg2g 5tt | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a C24r Hg2g Vhp | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a C24r Hg3g V8hp | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a C24r Hg3g Vahp | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a C24r Hg4g Vhp | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a C24r Hg5g Vhp | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.6 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 16 Pc | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 16 Ra | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 16 Kc | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 16 Ra Hg1g | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 16 Ra Hg2g 5tn | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 16 Ra Hg2g 5tt | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 16 Rc | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 16 Rc Hg2g 5tn | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 16 Rc Hg1g | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 16 Rc Hg2g 5tt | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 16 Kd | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 16 Pd | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a C16r Hg2g Vhp | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a C16r Hg3g V8hp | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a C16r Hg3g Vahp | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a C16r Hg5g Vhp | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 16 Rd | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 40 Kd | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 40 Pc | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 40 Pd | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 40 Ra | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 40 Rd | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.60 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a 40 Rc | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a D16p Hg1g | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a D16p Hg2g 5tn | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a D16p Hg2g 5tt | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a D16r Hg2g 5tn | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a D16r Hg2g 5tt | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a D16r Hg3g V8hp | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a D16r Hg3g Vahp | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a D16r Hg4g Vhp | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a D16r Hg5g Vhp | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a D16r Hg1g | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a D16r Hg2g Vhp | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a P16 K | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a P16 R | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a P16 S | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Ft1a H12ra | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Ft1a H24ra | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Ft1a H24rc | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Ft1a H12rc | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Ft1a B12ra | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Ft1a B24ra | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 12 Bac | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 12 Hac | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 12 Bdc | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 12 Hdc | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 24 Hac | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 24 Bac | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 24 Bdc | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 24 Hdc | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 40 Bac R | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 40 Bdc Rk | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 40 Bdc Rs | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 40 Hac R | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 40 Hdc Rk | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 48 Bac K | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 40 Hdc Rs | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 48 Bac S | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 48 Bdc K | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 48 Hac S | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 48 Hac K | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 48 Hdc S | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Smart 48 Bdc S | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Ft1a Pc1 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Ft1a Pc2 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Ft1a Pc3 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Ft1a Pm1 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Ft9z 1a01 | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Ft9z Psp1pn05 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.41 |
| Running on/with | Platform Versions |
|---|---|
Idec Hg9z Xcm2a | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a D32p Hg1g | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a D32p Hg2g 5tn | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a D32p Hg2g 5tt | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a P32 K | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 2.40 |
| Running on/with | Platform Versions |
|---|---|
Idec Kit Fc6a P32 S | All versions |
References (2)
Source: vultures@jpcert.or.jp
Timeline
No history available yet.