CVE-2024-40617

Name of the Vulnerable Software and Affected Versions FUJITSU Network Edgiot GW1500 (M2M-GW for FENICS) versions not specified

Description The issue is related to a path traversal vulnerability, which may allow a remote attacker with User Class privilege to access restricted files containing sensitive information by sending a specially crafted request to the affected product. This could potentially lead to the hijacking of Administrator Class privileges of the product.

Recommendations For FUJITSU Network Edgiot GW1500 (M2M-GW for FENICS), consider restricting access to sensitive files and directories to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using the affected product with User Class privilege until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.