cbcvebase.
CVE-2024-2012
published 2024-06-11

CVE-2024-2012: vulnerability exists in the FOXMAN-UN/UNEM server / API Gateway that if exploited an attacker could use to allow unintended commands or code to be executed on…

PriorityP355critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.60%
44.3th percentile
vulnerability exists in the FOXMAN-UN/UNEM server / API Gateway that if exploited an attacker could use to allow unintended commands or code to be executed on the UNEM server allowing sensitive data to be read or modified or could cause other unintended behavior

Affected

35 ranges· showing 25
VendorProductVersion rangeFixed in
hitachi_energyfoxman-un
hitachi_energyfoxman-un
hitachi_energyfoxman-un
hitachi_energyfoxman-un
hitachi_energyunem
hitachi_energyunem
hitachi_energyunem
hitachi_energyunem
hitachi_energyunem
hitachienergyfoxman-un
hitachienergyfoxman-un
hitachienergyfoxman-un
hitachienergyfoxman-un
hitachienergyunem
hitachienergyunem
hitachienergyunem
hitachienergyunem
msrcwindows_10
msrcwindows_10_version_1607
msrcwindows_10_version_1809
msrcwindows_10_version_21h2
msrcwindows_10_version_22h2
msrcwindows_11_version_21h2
msrcwindows_11_version_22h2
msrcwindows_11_version_23h2

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vulncheck10.0CRITICAL
cisa8.8HIGH
vendor_msrc9.8CRITICAL
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.