Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

American Dynamics Illustra Essentials Gen 4

Source -

CNA

CNA CVEs -

4

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

0
Related CVEsRelated VendorsRelated AssignersReports
4Vulnerabilities found
CVE-2024-32932
Assigner-Johnson Controls
ShareView Details
Assigner-Johnson Controls
CVSS Score-6.8||MEDIUM
EPSS-0.09% / 25.80%
||
7 Day CHG~0.00%
Published-02 Jul, 2024 | 14:08
Updated-02 Aug, 2024 | 02:27
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
American Dynamics Illustra Essentials Gen 4 - Reversible User Credential - stored web interface

Under certain circumstances the web interface users credentials may be recovered by an authenticated user.

Action-Not Available
Vendor-Johnson Controlsjohnsoncontrols
Product-American Dynamics Illustra Essentials Gen 4illustra_essential_gen_4_firmware
CWE ID-CWE-257
Storing Passwords in a Recoverable Format
CVE-2024-32757
Assigner-Johnson Controls
ShareView Details
Assigner-Johnson Controls
CVSS Score-6.8||MEDIUM
EPSS-0.08% / 25.39%
||
7 Day CHG~0.00%
Published-02 Jul, 2024 | 14:02
Updated-02 Aug, 2024 | 02:20
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
American Dynamics Illustra Essentials Gen 4 - Linux Credential Leak

Under certain circumstances unnecessary user details are provided within system logs

Action-Not Available
Vendor-Johnson Controlsjohnsoncontrols
Product-American Dynamics Illustra Essentials Gen 4illustra_essential_gen_4_firmware
CWE ID-CWE-532
Insertion of Sensitive Information into Log File
CVE-2024-32756
Assigner-Johnson Controls
ShareView Details
Assigner-Johnson Controls
CVSS Score-6.8||MEDIUM
EPSS-0.07% / 20.61%
||
7 Day CHG~0.00%
Published-02 Jul, 2024 | 13:53
Updated-02 Aug, 2024 | 02:20
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
American Dynamics Illustra Essentials Gen 4 - Reversible User Credential - Linux

Under certain circumstances the Linux users credentials may be recovered by an authenticated user.

Action-Not Available
Vendor-Johnson Controlsjohnsoncontrols
Product-American Dynamics Illustra Essentials Gen 4illustra_essential_gen_4_firmware
CWE ID-CWE-257
Storing Passwords in a Recoverable Format
CVE-2024-32755
Assigner-Johnson Controls
ShareView Details
Assigner-Johnson Controls
CVSS Score-9.1||CRITICAL
EPSS-0.10% / 27.37%
||
7 Day CHG~0.00%
Published-02 Jul, 2024 | 13:38
Updated-02 Aug, 2024 | 02:20
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
American Dynamics Illustra Essentials Gen 4 - Log Filter Input Validation

Under certain circumstances the web interface will accept characters unrelated to the expected input.

Action-Not Available
Vendor-Johnson Controlsjohnsoncontrols
Product-American Dynamics Illustra Essentials Gen 4illustra_essential_gen_4_firmware
CWE ID-CWE-20
Improper Input Validation