Vulnerabilities > CVE-2024-8451 - Improper Handling of Insufficient Permissions or Privileges vulnerability in Planet Gs-4210-24P2S Firmware and Gs-4210-24Pl4C Firmware

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
planet
CWE-280

Summary

Certain switch models from PLANET Technology have an SSH service that improperly handles insufficiently authenticated connection requests, allowing unauthorized remote attackers to exploit this weakness to occupy connection slots and prevent legitimate users from accessing the SSH service.