CVE-2024-40617: Path Traversal

Q: What is the severity of CVE-2024-40617?

CVE-2024-40617 is classified as a medium-severity path traversal vulnerability.

Q: How do I fix CVE-2024-40617?

To address CVE-2024-40617, it is recommended to update the Fujitsu Network Edgiot GW1500 firmware to the latest version.

Q: Who is affected by CVE-2024-40617?

CVE-2024-40617 affects the Fujitsu Network Edgiot GW1500 firmware versions below v02l19c01.

Q: What type of vulnerability is CVE-2024-40617?

CVE-2024-40617 is a path traversal vulnerability that allows access to restricted files.

Q: What can attackers do with CVE-2024-40617?

An authenticated attacker with User Class privilege can exploit CVE-2024-40617 to access sensitive information in restricted files.

Published Jul 17, 2024

Updated

Path traversal vulnerability exists in FUJITSU Network Edgiot GW1500 (M2M-GW for FENICS). If a remote authenticated attacker with User Class privilege sends a specially crafted request to the affected product, access restricted files containing sensitive information may be accessed. As a result, Administrator Class privileges of the product may be hijacked.

Affected Software

2 affected components

All of the following

Fujitsu Network Edgiot Gw1500 Firmware<v02l19c01

Fujitsu Network Edgiot GW1500

Event History

Jul 17, 2024

CVE Published

via MITRE·08:44 AM

Data Sourced

via MITRE·08:44 AM

DescriptionWeakness

Data Sourced

via NVD·09:15 AM

Description

Frequently Asked Questions

What is the severity of CVE-2024-40617?

CVE-2024-40617 is classified as a medium-severity path traversal vulnerability.

How do I fix CVE-2024-40617?

To address CVE-2024-40617, it is recommended to update the Fujitsu Network Edgiot GW1500 firmware to the latest version.

Who is affected by CVE-2024-40617?

CVE-2024-40617 affects the Fujitsu Network Edgiot GW1500 firmware versions below v02l19c01.

What type of vulnerability is CVE-2024-40617?

CVE-2024-40617 is a path traversal vulnerability that allows access to restricted files.

What can attackers do with CVE-2024-40617?

An authenticated attacker with User Class privilege can exploit CVE-2024-40617 to access sensitive information in restricted files.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.