cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-41153,https://securityvulnerability.io/vulnerability/CVE-2024-41153,Command Injection Vulnerability in Hitachi Energy TRO600 Series Radios,"A command injection vulnerability exists in the Edge Computing user interface of the TRO600 series radios from Hitachi Energy, which can be exploited by an attacker with write access to the web UI. This weakness allows the execution of arbitrary system commands with root privileges, exposing the device to substantial risk beyond the intended scope of write privileges. The implications of this vulnerability necessitate immediate attention to safeguard against potential exploitation.",Hitachi,Tro610 Firmware,7.2,HIGH,0.0004900000058114529,false,false,false,false,,false,false,2024-10-29T13:15:00.000Z,0
CVE-2024-41156,https://securityvulnerability.io/vulnerability/CVE-2024-41156,Sensitivity of Profile File Handling in Tropos Radios from Hitachi Energy,"The vulnerability concerns profile files associated with the TRO600 series radios from Hitachi Energy, which can be extracted in both plain-text and encrypted formats. These profile files contain critical configuration details about the Tropos network that could be leveraged by potential attackers. Although only authenticated users with elevated privileges can export these files, the risk lies in the potential for unauthorized access if security measures are not robustly implemented. Implementing strong data protection protocols is essential to prevent leakage of sensitive information.",Hitachi,Tro610 Firmware,2.7,LOW,0.00044999999227002263,false,false,false,false,,false,false,2024-10-29T13:15:00.000Z,0