How severe is CVE-2024-45837?

CVE-2024-45837 has a CVSS v3 score of 5.4 (MEDIUM).

CVE-2024-45837

5.4MEDIUM

Use of hard-coded cryptographic key issue exists in AIPHONE IX SYSTEM, IXG SYSTEM, and System Support Software. A network-adjacent unauthenticated attacker may log in to SFTP service and obtain and/or

Published: 11/22/2024Updated: 11/22/2024

Description

Use of hard-coded cryptographic key issue exists in AIPHONE IX SYSTEM, IXG SYSTEM, and System Support Software. A network-adjacent unauthenticated attacker may log in to SFTP service and obtain and/or manipulate unauthorized files.

AI AnalysisPowered by AI

References

https://jvn.jp/en/jp/JVN41397971/
https://www.aiphone.net/important/20241016_1/
https://www.aiphone.net/important/20241016_2/
https://www.aiphone.net/support/software-documents/ix/
https://www.aiphone.net/support/software-documents/ixg/