Server-side request forgery vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to send an arbitrary HTTP request (GET) from the affected product.
Metrics
Affected Vendors & Products
References
History
Fri, 13 Dec 2024 18:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Sharp
Sharp jh-rv11 Sharp jh-rv11 Firmware Sharp jh-rvb1 Sharp jh-rvb1 Firmware |
|
Weaknesses | CWE-918 | |
CPEs | cpe:2.3:h:sharp:jh-rv11:-:*:*:*:*:*:*:* cpe:2.3:h:sharp:jh-rvb1:-:*:*:*:*:*:*:* cpe:2.3:o:sharp:jh-rv11_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:sharp:jh-rvb1_firmware:*:*:*:*:*:*:*:* |
|
Vendors & Products |
Sharp
Sharp jh-rv11 Sharp jh-rv11 Firmware Sharp jh-rvb1 Sharp jh-rvb1 Firmware |
|
Metrics |
cvssV3_1
|
cvssV3_1
|
Fri, 09 Aug 2024 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: jpcert
Published: 2024-02-14T10:10:41.448Z
Updated: 2024-08-09T16:08:30.643Z
Reserved: 2024-01-22T09:56:37.455Z
Link: CVE-2024-23788
Vulnrichment
Updated: 2024-08-01T23:13:07.427Z
NVD
Status : Analyzed
Published: 2024-02-14T10:15:08.830
Modified: 2024-12-13T17:32:04.810
Link: CVE-2024-23788
Redhat
No data.