fkie_nvd - fkie_cve-2024-39921

fkie_cve-2024-39921

Vulnerability from fkie_nvd

Published

2024-09-04 03:15

Modified

2025-03-13 14:15

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Summary

Observable timing discrepancy issue exists in IPCOM EX2 Series V01L02NF0001 to V01L06NF0401, V01L20NF0001 to V01L20NF0401, V02L20NF0001 to V02L21NF0301, and IPCOM VE2 Series V01L04NF0001 to V01L06NF0112. If this vulnerability is exploited, some of the encrypted communication may be decrypted by an attacker who can obtain the contents of the communication.

References

	URL	Tags
	vultures@jpcert.or.jp	https://jvn.jp/en/jp/JVN29238389/	Mitigation, Third Party Advisory
	vultures@jpcert.or.jp	https://www.fujitsu.com/jp/products/network/support/2024/ipcom-04/	Mitigation, Vendor Advisory

Impacted products

Vendor	Product	Version
fujitsu	ipcom_ve2_ls_100_firmware	*
fujitsu	ipcom_ve2_ls_100	-
fujitsu	ipcom_ve2_ls_200_firmware	*
fujitsu	ipcom_ve2_ls_200	-
fujitsu	ipcom_ve2_ls_220_firmware	*
fujitsu	ipcom_ve2_ls_220	-
fujitsu	ipcom_ve2_ls_plus_100_firmware	*
fujitsu	ipcom_ve2_ls_plus_100	-
fujitsu	ipcom_ve2_ls_plus_200_firmware	*
fujitsu	ipcom_ve2_ls_plus_200	-
fujitsu	ipcom_ve2_ls_plus_220_firmware	*
fujitsu	ipcom_ve2_ls_plus_220	-
fujitsu	ipcom_ve2_ls_plus2_200_firmware	*
fujitsu	ipcom_ve2_ls_plus2_200	-
fujitsu	ipcom_ve2_ls_plus2_220_firmware	*
fujitsu	ipcom_ve2_ls_plus2_220	-
fujitsu	ipcom_ve2_sc_plus_100_firmware	*
fujitsu	ipcom_ve2_sc_plus_100	-
fujitsu	ipcom_ve2_sc_plus_200_firmware	*
fujitsu	ipcom_ve2_sc_plus_200	-
fujitsu	ipcom_ve2_sc_plus_220_firmware	*
fujitsu	ipcom_ve2_sc_plus_220	-
fujitsu	ipcom_ex2_in_3200_firmware	*
fujitsu	ipcom_ex2_in_3200_firmware	*
fujitsu	ipcom_ex2_in_3200_firmware	*
fujitsu	ipcom_ex2_in_3200	-
fujitsu	ipcom_ex2_in_3500_firmware	*
fujitsu	ipcom_ex2_in_3500_firmware	*
fujitsu	ipcom_ex2_in_3500_firmware	*
fujitsu	ipcom_ex2_in_3500	-
fujitsu	ipcom_ex2_lb_3200_firmware	*
fujitsu	ipcom_ex2_lb_3200_firmware	*
fujitsu	ipcom_ex2_lb_3200_firmware	*
fujitsu	ipcom_ex2_lb_3200	-
fujitsu	ipcom_ex2_lb_3500_firmware	*
fujitsu	ipcom_ex2_lb_3500_firmware	*
fujitsu	ipcom_ex2_lb_3500_firmware	*
fujitsu	ipcom_ex2_lb_3500	-
fujitsu	ipcom_ex2_sc_3200_firmware	*
fujitsu	ipcom_ex2_sc_3200_firmware	*
fujitsu	ipcom_ex2_sc_3200_firmware	*
fujitsu	ipcom_ex2_sc_3200	-
fujitsu	ipcom_ex2_sc_3500_firmware	*
fujitsu	ipcom_ex2_sc_3500_firmware	*
fujitsu	ipcom_ex2_sc_3500_firmware	*
fujitsu	ipcom_ex2_sc_3500	-
fujitsu	ipcom_ex2_dc_3200_firmware	*
fujitsu	ipcom_ex2_dc_3200_firmware	*
fujitsu	ipcom_ex2_dc_3200_firmware	*
fujitsu	ipcom_ex2_dc_3200	-
fujitsu	ipcom_ex2_dc_3500_firmware	*
fujitsu	ipcom_ex2_dc_3500_firmware	*
fujitsu	ipcom_ex2_dc_3500_firmware	*
fujitsu	ipcom_ex2_dc_3500	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ve2_ls_100_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F33CCD4D-E55C-4B95-8AB0-32FD36482F14",
              "versionEndIncluding": "v01l06nf0112",
              "versionStartIncluding": "v01l04nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ve2_ls_100:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AC847DF6-0FB4-498F-9E6A-E9277BEFAF8B",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ve2_ls_200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7ACBF242-4C29-4DD2-AD23-BC9356377286",
              "versionEndIncluding": "v01l06nf0112",
              "versionStartIncluding": "v01l04nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ve2_ls_200:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B2672DF0-E57F-4BD6-A1E7-48923F99E488",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ve2_ls_220_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0FC14544-DF17-4BAD-98E8-64ACEDA96091",
              "versionEndIncluding": "v01l06nf0112",
              "versionStartIncluding": "v01l04nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ve2_ls_220:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F0FEF791-A685-4036-8B65-94D00C344AD5",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ve2_ls_plus_100_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "522288AD-5175-4F19-BF23-D4EEF1E3CE3F",
              "versionEndIncluding": "v01l06nf0112",
              "versionStartIncluding": "v01l04nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ve2_ls_plus_100:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "239A61B6-1F0B-4B80-91E5-372E0F9D9542",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ve2_ls_plus_200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C5338A67-DEC0-442F-8C28-9A0BC2906797",
              "versionEndIncluding": "v01l06nf0112",
              "versionStartIncluding": "v01l04nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ve2_ls_plus_200:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4105E5B6-6E70-4E4A-B339-725CF8EB7DF2",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ve2_ls_plus_220_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "58FF3704-C3BF-44BB-9BBA-1BFA242F1503",
              "versionEndIncluding": "v01l06nf0112",
              "versionStartIncluding": "v01l04nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ve2_ls_plus_220:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7C3CB421-17F7-4A57-A64C-2C0ACDF54336",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ve2_ls_plus2_200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D51F4578-7896-4C8D-A5A3-808B8C3C228E",
              "versionEndIncluding": "v01l06nf0112",
              "versionStartIncluding": "v01l04nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ve2_ls_plus2_200:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E93E24C7-5A1F-4CC8-8553-A78DF56DAFFD",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ve2_ls_plus2_220_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "121F16FA-ADB2-4A14-9001-0A173F01EBA1",
              "versionEndIncluding": "v01l06nf0112",
              "versionStartIncluding": "v01l04nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ve2_ls_plus2_220:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "37782E15-4803-4A46-B977-AC8F476EA812",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ve2_sc_plus_100_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B8041853-1E56-43FC-8C00-334C55F4DC42",
              "versionEndIncluding": "v01l06nf0112",
              "versionStartIncluding": "v01l04nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ve2_sc_plus_100:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "48F2D40A-0141-45BF-9058-D9EC91826118",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ve2_sc_plus_200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A96DE914-28DE-4FB9-9E56-0C038818A7CE",
              "versionEndIncluding": "v01l06nf0112",
              "versionStartIncluding": "v01l04nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ve2_sc_plus_200:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "11684682-AC1F-4270-AEA0-9D1324FE3B9C",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ve2_sc_plus_220_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "EF5DCD75-A9C2-4FC8-8E37-CAD58B570445",
              "versionEndIncluding": "v01l06nf0112",
              "versionStartIncluding": "v01l04nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ve2_sc_plus_220:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "632309EF-EB1A-4349-9A47-633F6FEA6868",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_in_3200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "427446D3-CF6D-47B3-9EB1-42D1499D9169",
              "versionEndIncluding": "v01l06nf0401",
              "versionStartIncluding": "v01l02nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_in_3200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D32779B2-1953-42AA-84CC-9FB8A60D4DCE",
              "versionEndIncluding": "v01l20nf0401",
              "versionStartIncluding": "v01l20nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_in_3200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "850AF6C2-1B57-40F4-8DE5-7BA678940FAF",
              "versionEndIncluding": "v02l21nf0301",
              "versionStartIncluding": "v02l20nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ex2_in_3200:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "749541B1-9447-41DB-B507-3C25923C8056",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_in_3500_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6834BE51-4F83-47D7-9078-55CE715DB9E1",
              "versionEndIncluding": "v01l06nf0401",
              "versionStartIncluding": "v01l02nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_in_3500_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9335DA00-53AD-4FA6-A105-C544B0A7F5C1",
              "versionEndIncluding": "v01l20nf0401",
              "versionStartIncluding": "v01l20nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_in_3500_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "26FFBA82-8A98-4791-9D29-6BD4D01D43FF",
              "versionEndIncluding": "v02l21nf0301",
              "versionStartIncluding": "v02l20nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ex2_in_3500:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "038815A3-3810-408E-B89B-80C5E47272D9",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_lb_3200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "684511EB-FCF1-46C7-8AFF-829C4E1F0306",
              "versionEndIncluding": "v01l06nf0401",
              "versionStartIncluding": "v01l02nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_lb_3200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "21AF154C-6572-41E5-A4F1-A70DB59C78C3",
              "versionEndIncluding": "v01l20nf0401",
              "versionStartIncluding": "v01l20nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_lb_3200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "521D2E3B-3624-47D4-A93F-5386859AD256",
              "versionEndIncluding": "v02l21nf0301",
              "versionStartIncluding": "v02l20nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ex2_lb_3200:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "724D4C66-A53A-4293-8BF8-41136A3FC96B",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_lb_3500_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "3172D936-A418-4329-9FC6-E2152BE7CB90",
              "versionEndIncluding": "v01l06nf0401",
              "versionStartIncluding": "v01l02nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_lb_3500_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A3CBC251-E0FC-4ECF-A6B2-DE9A28F63E96",
              "versionEndIncluding": "v01l20nf0401",
              "versionStartIncluding": "v01l20nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_lb_3500_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7AC3CFF0-9A53-4334-9C24-6CE64FB1E108",
              "versionEndIncluding": "v02l21nf0301",
              "versionStartIncluding": "v02l20nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ex2_lb_3500:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "26AEF78E-78D6-4668-A3EC-85A700B561AD",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_sc_3200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "ADDB8FD1-7252-4A53-A139-E810E04D8644",
              "versionEndIncluding": "v01l06nf0401",
              "versionStartIncluding": "v01l02nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_sc_3200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "471F87B1-067B-48CF-934E-14B8B5448B09",
              "versionEndIncluding": "v01l20nf0401",
              "versionStartIncluding": "v01l20nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_sc_3200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "96163B7D-834F-4FDF-8337-3016E0CB5550",
              "versionEndIncluding": "v02l21nf0301",
              "versionStartIncluding": "v02l20nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ex2_sc_3200:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D42386DF-D819-4101-BB4A-3C4A905947E8",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_sc_3500_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8CE628AE-749E-43B9-99EF-22F431A57115",
              "versionEndIncluding": "v01l06nf0401",
              "versionStartIncluding": "v01l02nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_sc_3500_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "20993B20-3FCA-49CC-930A-73178A52D369",
              "versionEndIncluding": "v01l20nf0401",
              "versionStartIncluding": "v01l20nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_sc_3500_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE3E90AD-253B-4A68-A1A3-B07E6DE57B81",
              "versionEndIncluding": "v02l21nf0301",
              "versionStartIncluding": "v02l20nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ex2_sc_3500:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A70AEB89-7AB9-4B42-A97B-380E8D9245DB",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_dc_3200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "5FD20DCA-7300-476A-A67E-36E97FE675BE",
              "versionEndIncluding": "v01l06nf0401",
              "versionStartIncluding": "v01l02nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_dc_3200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F5E9AA9B-800A-43B2-88CB-96199BBE81B2",
              "versionEndIncluding": "v01l20nf0401",
              "versionStartIncluding": "v01l20nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_dc_3200_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "CDB984FA-37A6-4233-8508-B9F774CEFDB5",
              "versionEndIncluding": "v02l21nf0301",
              "versionStartIncluding": "v02l20nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ex2_dc_3200:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3AD94E19-5A80-4752-A70C-88DB73696DAA",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_dc_3500_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "88A97F3B-7521-44FB-AAC9-406397D4C5E7",
              "versionEndIncluding": "v01l06nf0401",
              "versionStartIncluding": "v01l02nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_dc_3500_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "1A5C21EC-F232-4CF9-A6E8-C391D8DD9F54",
              "versionEndIncluding": "v01l20nf0401",
              "versionStartIncluding": "v01l20nf0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fujitsu:ipcom_ex2_dc_3500_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9BB3AE73-5A32-43E9-AF3F-BE1B971AA031",
              "versionEndIncluding": "v02l21nf0301",
              "versionStartIncluding": "v02l20nf0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fujitsu:ipcom_ex2_dc_3500:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9D9BC4CF-A11A-4681-AFFD-E4574A02F0C0",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Observable timing discrepancy issue exists in IPCOM EX2 Series V01L02NF0001 to V01L06NF0401, V01L20NF0001 to V01L20NF0401, V02L20NF0001 to V02L21NF0301, and IPCOM VE2 Series V01L04NF0001 to V01L06NF0112. If this vulnerability is exploited, some of the encrypted communication may be decrypted by an attacker who can obtain the contents of the communication."
    },
    {
      "lang": "es",
      "value": "Existe un problema de discrepancia de tiempo observable en las series IPCOM EX2 V01L02NF0001 a V01L06NF0401, V01L20NF0001 a V01L20NF0401, V02L20NF0001 a V02L21NF0301 y en las series IPCOM VE2 V01L04NF0001 a V01L06NF0112. Si se explota esta vulnerabilidad, un atacante puede descifrar parte de la comunicaci\u00f3n cifrada y obtener el contenido de la misma."
    }
  ],
  "id": "CVE-2024-39921",
  "lastModified": "2025-03-13T14:15:29.073",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2024-09-04T03:15:03.300",
  "references": [
    {
      "source": "vultures@jpcert.or.jp",
      "tags": [
        "Mitigation",
        "Third Party Advisory"
      ],
      "url": "https://jvn.jp/en/jp/JVN29238389/"
    },
    {
      "source": "vultures@jpcert.or.jp",
      "tags": [
        "Mitigation",
        "Vendor Advisory"
      ],
      "url": "https://www.fujitsu.com/jp/products/network/support/2024/ipcom-04/"
    }
  ],
  "sourceIdentifier": "vultures@jpcert.or.jp",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-203"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-203"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}

CVE-2024-39921 (GCVE-0-2024-39921)

Vulnerability from cvelistv5

Published

2024-09-04 01:51

Modified

2025-03-13 13:26

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE

Observable timing discrepancy

Summary

References

URL

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted