Description
Insufficiently protected credentials issue exists in AIPHONE IX SYSTEM and IXG SYSTEM. A network-adjacent unauthenticated attacker may obtain sensitive information such as a username and its password in the address book.
Reserved 2024-09-26 | Published 2024-11-22 | Updated 2024-11-22 | Assigner
jpcertMEDIUM: 6.5CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Problem types
Insufficiently protected credentials
Product status
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.11 and earlier
affected
firmware Ver.7.11 and earlier
affected
firmware Ver.7.11 and earlier
affected
firmware Ver.7.11 and earlier
affected
firmware Ver.7.11 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.11 and earlier
affected
firmware Ver.7.11 and earlier
affected
firmware Ver.7.11 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.11 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.11 and earlier
affected
firmware Ver.7.11 and earlier
affected
firmware Ver.7.11 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.7.10 and earlier
affected
firmware Ver.3.01 and earlier
affected
firmware Ver.3.01 and earlier
affected
firmware Ver.3.00 and earlier
affected
firmware Ver.3.00 and earlier
affected
firmware Ver.3.00 and earlier
affected
firmware Ver.3.00 and earlier
affected
firmware Ver.3.00 and earlier
affected
firmware Ver.3.01 and earlier
affected
firmware Ver.3.01 and earlier
affected
firmware Ver.3.00 and earlier
affected
References
www.aiphone.net/important/20241016_1/
www.aiphone.net/important/20241016_2/
www.aiphone.net/support/software-documents/ix/
www.aiphone.net/support/software-documents/ixg/
jvn.jp/en/jp/JVN41397971/
cve.org (CVE-2024-39290)
nvd.nist.gov (CVE-2024-39290)
Download JSON
Subscribe to our newsletter to learn more about our work.