Description
Use of hard-coded cryptographic key issue exists in AIPHONE IX SYSTEM, IXG SYSTEM, and System Support Software. A network-adjacent unauthenticated attacker may log in to SFTP service and obtain and/or manipulate unauthorized files.
Reserved 2024-09-26 | Published 2024-11-22 | Updated 2024-11-22 | Assigner
jpcertMEDIUM: 5.4CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Problem types
Use of hard-coded cryptographic key
Product status
firmware Ver.7.30 and earlier
affected
firmware Ver.7.31 and earlier
affected
firmware Ver.7.31 and earlier
affected
firmware Ver.7.31 and earlier
affected
firmware Ver.7.31 and earlier
affected
firmware Ver.7.31 and earlier
affected
firmware Ver.7.31 and earlier
affected
firmware Ver.7.31 and earlier
affected
firmware Ver.7.31 and earlier
affected
firmware Ver.7.31 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.7.30 and earlier
affected
firmware Ver.3.01 and earlier
affected
firmware Ver.3.01 and earlier
affected
firmware Ver.3.00 and earlier
affected
firmware Ver.3.00 and earlier
affected
firmware Ver.3.00 and earlier
affected
firmware Ver.3.00 and earlier
affected
firmware Ver.3.00 and earlier
affected
firmware Ver.3.01 and earlier
affected
firmware Ver.3.01 and earlier
affected
firmware Ver.3.00 and earlier
affected
Ver.10.3.0.0 and earlier
affected
Ver.5.0.2.0 and earlier
affected
References
www.aiphone.net/important/20241016_1/
www.aiphone.net/important/20241016_2/
www.aiphone.net/support/software-documents/ix/
www.aiphone.net/support/software-documents/ixg/
jvn.jp/en/jp/JVN41397971/
cve.org (CVE-2024-45837)
nvd.nist.gov (CVE-2024-45837)
Download JSON
Subscribe to our newsletter to learn more about our work.