Vulnerabilities > Fujitsu

DATE CVE VULNERABILITY TITLE RISK
2024-09-04 CVE-2024-39921 Information Exposure Through Discrepancy vulnerability in Fujitsu products
Observable timing discrepancy issue exists in IPCOM EX2 Series V01L02NF0001 to V01L06NF0401, V01L20NF0001 to V01L20NF0401, V02L20NF0001 to V02L21NF0301, and IPCOM VE2 Series V01L04NF0001 to V01L06NF0112.
network
low complexity
fujitsu CWE-203
7.5
2024-07-17 CVE-2024-40617 Path Traversal vulnerability in Fujitsu Network Edgiot Gw1500 Firmware
Path traversal vulnerability exists in FUJITSU Network Edgiot GW1500 (M2M-GW for FENICS).
network
low complexity
fujitsu CWE-22
6.5
2023-09-19 CVE-2023-4093 Cross-site Scripting vulnerability in Fujitsu Arconte Aurea 1.5.0.0
Reflected and persistent XSS vulnerability in Arconte Áurea, in its 1.5.0.0 version.
network
low complexity
fujitsu CWE-79
6.1
2023-09-19 CVE-2023-4094 Improper Authentication vulnerability in Fujitsu Arconte Aurea 1.5.0.0
ARCONTE Aurea's authentication system, in its 1.5.0.0 version, could allow an attacker to make incorrect access requests in order to block each legitimate account and cause a denial of service.
network
low complexity
fujitsu CWE-287
8.2
2023-09-19 CVE-2023-4095 Information Exposure Through Discrepancy vulnerability in Fujitsu Arconte Aurea 1.5.0.0
User enumeration vulnerability in Arconte Áurea 1.5.0.0 version.
network
low complexity
fujitsu CWE-203
5.3
2023-09-19 CVE-2023-4096 Weak Password Recovery Mechanism for Forgotten Password vulnerability in Fujitsu Arconte Aurea 1.5.0.0
Weak password recovery mechanism vulnerability in Fujitsu Arconte Áurea version 1.5.0.0, which exploitation could allow an attacker to perform a brute force attack on the emailed PIN number in order to change the password of a legitimate user.
network
low complexity
fujitsu CWE-640
8.2
2023-09-19 CVE-2023-4092 SQL Injection vulnerability in Fujitsu Arconte Aurea 1.5.0.0
SQL injection vulnerability in Arconte Áurea, in its 1.5.0.0 version.
network
low complexity
fujitsu CWE-89
critical
9.8
2023-08-07 CVE-2023-39903 Cleartext Storage of Sensitive Information vulnerability in Fujitsu Software Infrastructure Manager 2.8.0.060
An issue was discovered in Fujitsu Software Infrastructure Manager (ISM) before 2.8.0.061.
local
low complexity
fujitsu CWE-312
5.0
2023-08-04 CVE-2023-39379 Cleartext Storage of Sensitive Information vulnerability in Fujitsu Software Infrastructure Manager 2.8.0.060
Fujitsu Software Infrastructure Manager (ISM) stores sensitive information at the product's maintenance data (ismsnap) in cleartext form.
network
low complexity
fujitsu CWE-312
7.5
2023-07-26 CVE-2023-38433 Use of Hard-coded Credentials vulnerability in Fujitsu products
Fujitsu Real-time Video Transmission Gear "IP series" use hard-coded credentials, which may allow a remote unauthenticated attacker to initialize or reboot the products, and as a result, terminate the video transmission.
network
low complexity
fujitsu CWE-798
7.5