PT-2024-29537 · Unknown · Zwx-2000Csw2-Hn

Hiroki Sato

Published

2024-08-05

Updated

2024-08-30

CVE-2024-41720

CVSS v3.1

8.0

High

Vector

AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions ZWX-2000CSW2-HN firmware versions prior to Ver.0.3.15

Description The issue is related to incorrect permission assignment for a critical resource, which may allow a network-adjacent authenticated attacker to alter the device's configuration.

Recommendations For ZWX-2000CSW2-HN firmware versions prior to Ver.0.3.15, upgrade to Ver.0.3.15 or later to mitigate the risk.

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732

Related Identifiers

CVE-2024-41720

Affected Products

Zwx-2000Csw2-Hn

PT-2024-29537 · Unknown · Zwx-2000Csw2-Hn

CVE-2024-41720

Weakness Enumeration

Related Identifiers

Affected Products

References · 7