CVE-2021-40342
Description
In the DES implementation, the affected product versions use a default key for encryption. Successful exploitation allows an attacker to obtain sensitive information and gain access to the network elements that are managed by the affected products versions.
This issue affects
* FOXMAN-UN product: FOXMAN-UN R16A, FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B, FOXMAN-UN R11A, FOXMAN-UN R10C, FOXMAN-UN R9C; * UNEM product: UNEM R16A, UNEM R15B, UNEM R15A, UNEM R14B, UNEM R14A, UNEM R11B, UNEM R11A, UNEM R10C, UNEM R9C.
List of CPEs: * cpe:2.3🅰️hitachienergy:foxman-un:R16A:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:foxman-un:R15B:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:foxman-un:R15A:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:foxman-un:R14B:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:foxman-un:R14A:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:foxman-un:R11B:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:foxman-un:R11A:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:foxman-un:R10C:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:foxman-un:R9C:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:unem:R16A:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:unem:R15B:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:unem:R15A:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:unem:R14B:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:unem:R14A:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:unem:R11B:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:unem:R11A:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:unem:R10C:*:*:*:*:*:*:* * cpe:2.3🅰️hitachienergy:unem:R9C:*:*:*:*:*:*:*
- CVSS Version 3.1
CVE ID: CVE-2021-40342
Base Score: 7.1
Base Severity: HIGH
Vector String:CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
Refrence: MITRE