CVE-2024-47945

Published: Oct 15, 2024Modified: Nov 3, 2025

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

The devices are vulnerable to session hijacking due to insufficient entropy in its session ID generation algorithm. The session IDs are predictable, with only 32,768 possible values per user, which allows attackers to pre-generate valid session IDs, leading to unauthorized access to user sessions. This is not only due to the use of an (insecure) rand() function call but also because of missing initialization via srand(). As a result only the PIDs are effectively used as seed.

Affected (2)

Products: Rittal: Iot Interface Firmware, Cmc Iii Processing Units Firmware

2 products

Iot Interface Firmware

Cmc Iii Processing Units Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Rittal Iot Interface Firmware	Before 6.21.00.2

Running on/with	Platform Versions
Rittal Iot Interface	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Rittal Cmc Iii Processing Units Firmware	Before 6.21.00.2

Running on/with	Platform Versions
Rittal Cmc Iii Processing Units	All versions

Related CWEs

Insufficient Entropy

The product uses an algorithm or scheme that produces insufficient entropy, leaving patterns or clusters of values that are more likely to occur than others.

Generation of Predictable Numbers or Identifiers

The product uses a scheme that generates numbers or identifiers that are more predictable than required.

References (3)

https://r.sec-consult.com/rittaliot

Source: 551230f0-3615-47bd-b7cc-93e92e730bbf

ExploitThird Party Advisory

https://www.rittal.com/de-de/products/deep/3124300

Source: 551230f0-3615-47bd-b7cc-93e92e730bbf

Product

http://seclists.org/fulldisclosure/2024/Oct/4

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.