CRITICAL🇵🇱 Wersja polska

CVE-2024-8456

CVSS 9.8v3.1pub. 2024-09-30upd. 2024-10-04

Certain switch models from PLANET Technology lack proper access control in firmware upload and download functionality, allowing unauthenticated remote attackers to download and upload firmware and system configurations, ultimately gaining full control of the devices.

🤖 AI Analysis
How it works

The vulnerability results from the lack of any authentication requirement when performing firmware upload and download operations as well as system configuration. An attacker can remotely, without providing login credentials, download the current device configuration (potentially containing sensitive data) or upload modified firmware. Submitting crafted firmware allows permanent takeover of the device.

Impact

An attacker can gain complete control over the network device — including reading its configuration, modifying firmware, and permanently taking over the switch. This can lead to violations of confidentiality, integrity, and availability of the entire network served by this device.

Mitigation & patch

Apply patches available from the manufacturer according to references. Until an update is applied, it is recommended to isolate the device management interface from unauthorized networks and restrict access to the administration panel only to trusted IP addresses through a firewall or dedicated out-of-band management network.

Who is affected

PLANET Technology network switches: GS-4210-24P2S (with firmware) and GS-4210-24PL4C (with firmware) — specific firmware versions indicated in manufacturer references.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Planet Gs 4210 24p2s

    HW
    Planet
    3.0
  • Planet Gs 4210 24p2s Firmware

    OS
    Planet
    < 3.305b240802
  • Planet Gs 4210 24pl4c

    HW
    Planet
    2.0
  • Planet Gs 4210 24pl4c Firmware

    OS
    Planet
    < 2.305b240719
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-8448HIGH8.8ten sam produkt

Certain switch models from PLANET Technology have a hard-coded credential in the specific command-line interfa...

CVE-2024-8450HIGH8.6ten sam produkt

Certain switch models from PLANET Technology have a Hard-coded community string in the SNMPv1 service, allowin...

CVE-2024-8451HIGH7.5ten sam produkt

Certain switch models from PLANET Technology have an SSH service that improperly handles insufficiently authen...

CVE-2024-8452HIGH7.5ten sam produkt

Certain switch models from PLANET Technology only support obsolete algorithms for authentication protocol and ...

CVE-2024-8455HIGH8.1ten sam produkt

The swctrl service is used to detect and remotely manage PLANET Technology devices. For certain switch models,...