Vulnerabilities > CVE-2024-23784 - Unspecified vulnerability in Sharp Jh-Rv11 Firmware and Jh-Rvb1 Firmware

047910
CVSS 6.5 - MEDIUM
Attack vector
ADJACENT_NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
low complexity
sharp

Summary

Improper access control vulnerability exists in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier, which may allow a network-adjacent unauthenticated attacker to obtain a username and its hashed password displayed on the management page of the affected product.

Vulnerable Configurations

Part Description Count
OS
Sharp
2
Hardware
Sharp
2