4.6
MEDIUM
CVE-2024-41927
IDEC PLC Cleartext Credential Transmission Vulnerability
Description

Cleartext transmission of sensitive information vulnerability exists in multiple IDEC PLCs. If an attacker sends a specific command to PLC's serial communication port, user credentials may be obtained. As a result, the program of the PLC may be obtained, and the PLC may be manipulated.

INFO

Published Date :

Sept. 4, 2024, 1:15 a.m.

Last Modified :

Sept. 19, 2024, 3:10 p.m.

Source :

[email protected]

Remotely Exploitable :

No

Impact Score :

3.6

Exploitability Score :

0.9
Affected Products

The following products are affected by CVE-2024-41927 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Idec kit-fc6a-24-kc_firmware
2 Idec kit-fc6a-24-kc
3 Idec kit-fc6a-24-pc_firmware
4 Idec kit-fc6a-24-pc
5 Idec kit-fc6a-24-ra_firmware
6 Idec kit-fc6a-24-ra
7 Idec kit-fc6a-24-ra-hg1g_firmware
8 Idec kit-fc6a-24-ra-hg1g
9 Idec kit-fc6a-24-ra-hg2g-5tn_firmware
10 Idec kit-fc6a-24-ra-hg2g-5tn
11 Idec kit-fc6a-24-ra-hg2g-5tt_firmware
12 Idec kit-fc6a-24-ra-hg2g-5tt
13 Idec kit-fc6a-24-rc-hg1g_firmware
14 Idec kit-fc6a-24-rc-hg1g
15 Idec kit-fc6a-24-rc_firmware
16 Idec kit-fc6a-24-rc
17 Idec kit-fc6a-24-rc-hg2g-5tn_firmware
18 Idec kit-fc6a-24-rc-hg2g-5tn
19 Idec kit-fc6a-24-rc-hg2g-5tt_firmware
20 Idec kit-fc6a-24-rc-hg2g-5tt
21 Idec kit-fc6a-c24r-hg2g-vhp_firmware
22 Idec kit-fc6a-c24r-hg2g-vhp
23 Idec kit-fc6a-c24r-hg3g-v8hp_firmware
24 Idec kit-fc6a-c24r-hg3g-v8hp
25 Idec kit-fc6a-c24r-hg3g-vahp_firmware
26 Idec kit-fc6a-c24r-hg3g-vahp
27 Idec kit-fc6a-c24r-hg4g-vhp_firmware
28 Idec kit-fc6a-c24r-hg4g-vhp
29 Idec kit-fc6a-c24r-hg5g-vhp_firmware
30 Idec kit-fc6a-c24r-hg5g-vhp
31 Idec kit-fc6a-16-pc_firmware
32 Idec kit-fc6a-16-pc
33 Idec kit-fc6a-16-ra_firmware
34 Idec kit-fc6a-16-ra
35 Idec kit-fc6a-16-kc_firmware
36 Idec kit-fc6a-16-kc
37 Idec kit-fc6a-16-ra-hg1g_firmware
38 Idec kit-fc6a-16-ra-hg1g
39 Idec kit-fc6a-16-ra-hg2g-5tn_firmware
40 Idec kit-fc6a-16-ra-hg2g-5tn
41 Idec kit-fc6a-16-ra-hg2g-5tt_firmware
42 Idec kit-fc6a-16-ra-hg2g-5tt
43 Idec kit-fc6a-16-rc_firmware
44 Idec kit-fc6a-16-rc
45 Idec kit-fc6a-16-rc-hg2g-5tn_firmware
46 Idec kit-fc6a-16-rc-hg2g-5tn
47 Idec kit-fc6a-16-rc-hg1g_firmware
48 Idec kit-fc6a-16-rc-hg1g
49 Idec kit-fc6a-16-rc-hg2g-5tt_firmware
50 Idec kit-fc6a-16-rc-hg2g-5tt
51 Idec kit-fc6a-16-kd_firmware
52 Idec kit-fc6a-16-kd
53 Idec kit-fc6a-16-pd_firmware
54 Idec kit-fc6a-16-pd
55 Idec kit-fc6a-c16r-hg2g-vhp_firmware
56 Idec kit-fc6a-c16r-hg2g-vhp
57 Idec kit-fc6a-c16r-hg3g-v8hp_firmware
58 Idec kit-fc6a-c16r-hg3g-v8hp
59 Idec kit-fc6a-c16r-hg3g-vahp_firmware
60 Idec kit-fc6a-c16r-hg3g-vahp
61 Idec kit-fc6a-c16r-hg5g-vhp_firmware
62 Idec kit-fc6a-c16r-hg5g-vhp
63 Idec kit-fc6a-16-rd_firmware
64 Idec kit-fc6a-16-rd
65 Idec kit-fc6a-40-kd_firmware
66 Idec kit-fc6a-40-kd
67 Idec kit-fc6a-40-pc_firmware
68 Idec kit-fc6a-40-pc
69 Idec kit-fc6a-40-pd_firmware
70 Idec kit-fc6a-40-pd
71 Idec kit-fc6a-40-ra_firmware
72 Idec kit-fc6a-40-ra
73 Idec kit-fc6a-40-rd_firmware
74 Idec kit-fc6a-40-rd
75 Idec kit-fc6a-40-rc_firmware
76 Idec kit-fc6a-40-rc
77 Idec kit-fc6a-d16p-hg1g_firmware
78 Idec kit-fc6a-d16p-hg1g
79 Idec kit-fc6a-d16p-hg2g-5tn_firmware
80 Idec kit-fc6a-d16p-hg2g-5tn
81 Idec kit-fc6a-d16p-hg2g-5tt_firmware
82 Idec kit-fc6a-d16p-hg2g-5tt
83 Idec kit-fc6a-d16r-hg2g-5tn_firmware
84 Idec kit-fc6a-d16r-hg2g-5tn
85 Idec kit-fc6a-d16r-hg2g-5tt_firmware
86 Idec kit-fc6a-d16r-hg2g-5tt
87 Idec kit-fc6a-d16r-hg3g-v8hp_firmware
88 Idec kit-fc6a-d16r-hg3g-v8hp
89 Idec kit-fc6a-d16r-hg3g-vahp_firmware
90 Idec kit-fc6a-d16r-hg3g-vahp
91 Idec kit-fc6a-d16r-hg4g-vhp_firmware
92 Idec kit-fc6a-d16r-hg4g-vhp
93 Idec kit-fc6a-d16r-hg5g-vhp_firmware
94 Idec kit-fc6a-d16r-hg5g-vhp
95 Idec kit-fc6a-d16r-hg1g_firmware
96 Idec kit-fc6a-d16r-hg1g
97 Idec kit-fc6a-d16r-hg2g-vhp_firmware
98 Idec kit-fc6a-d16r-hg2g-vhp
99 Idec kit-fc6a-p16-k_firmware
100 Idec kit-fc6a-p16-k
101 Idec kit-fc6a-p16-r_firmware
102 Idec kit-fc6a-p16-r
103 Idec kit-fc6a-p16-s_firmware
104 Idec kit-fc6a-p16-s
105 Idec ft1a-h12ra_firmware
106 Idec ft1a-h12ra
107 Idec ft1a-h24ra_firmware
108 Idec ft1a-h24ra
109 Idec ft1a-h24rc_firmware
110 Idec ft1a-h24rc
111 Idec ft1a-h12rc_firmware
112 Idec ft1a-h12rc
113 Idec ft1a-b12ra_firmware
114 Idec ft1a-b12ra
115 Idec ft1a-b24ra_firmware
116 Idec ft1a-b24ra
117 Idec kit-smart-12-bac_firmware
118 Idec kit-smart-12-bac
119 Idec kit-smart-12-hac_firmware
120 Idec kit-smart-12-hac
121 Idec kit-smart-12-bdc_firmware
122 Idec kit-smart-12-bdc
123 Idec kit-smart-12-hdc_firmware
124 Idec kit-smart-12-hdc
125 Idec kit-smart-24-hac_firmware
126 Idec kit-smart-24-hac
127 Idec kit-smart-24-bac_firmware
128 Idec kit-smart-24-bac
129 Idec kit-smart-24-bdc_firmware
130 Idec kit-smart-24-bdc
131 Idec kit-smart-24-hdc_firmware
132 Idec kit-smart-24-hdc
133 Idec kit-smart-40-bac-r_firmware
134 Idec kit-smart-40-bac-r
135 Idec kit-smart-40-bdc-rk_firmware
136 Idec kit-smart-40-bdc-rk
137 Idec kit-smart-40-bdc-rs_firmware
138 Idec kit-smart-40-bdc-rs
139 Idec kit-smart-40-hac-r_firmware
140 Idec kit-smart-40-hac-r
141 Idec kit-smart-40-hdc-rk_firmware
142 Idec kit-smart-40-hdc-rk
143 Idec kit-smart-48-bac-k_firmware
144 Idec kit-smart-48-bac-k
145 Idec kit-smart-40-hdc-rs_firmware
146 Idec kit-smart-40-hdc-rs
147 Idec kit-smart-48-bac-s_firmware
148 Idec kit-smart-48-bac-s
149 Idec kit-smart-48-bdc-k_firmware
150 Idec kit-smart-48-bdc-k
151 Idec kit-smart-48-hac-k_firmware
152 Idec kit-smart-48-hac-k
153 Idec kit-smart-48-hac-s_firmware
154 Idec kit-smart-48-hac-s
155 Idec kit-smart-48-hdc-s_firmware
156 Idec kit-smart-48-hdc-s
157 Idec kit-smart-48-bdc-s_firmware
158 Idec kit-smart-48-bdc-s
159 Idec ft1a-pc1_firmware
160 Idec ft1a-pc1
161 Idec ft1a-pc2_firmware
162 Idec ft1a-pc2
163 Idec ft1a-pc3_firmware
164 Idec ft1a-pc3
165 Idec ft1a-pm1_firmware
166 Idec ft1a-pm1
167 Idec ft9z-1a01_firmware
168 Idec ft9z-1a01
169 Idec ft9z-psp1pn05_firmware
170 Idec ft9z-psp1pn05
171 Idec hg9z-xcm2a_firmware
172 Idec hg9z-xcm2a
173 Idec kit-fc6a-d32p-hg1g_firmware
174 Idec kit-fc6a-d32p-hg1g
175 Idec kit-fc6a-d32p-hg2g-5tn_firmware
176 Idec kit-fc6a-d32p-hg2g-5tn
177 Idec kit-fc6a-d32p-hg2g-5tt_firmware
178 Idec kit-fc6a-d32p-hg2g-5tt
179 Idec kit-fc6a-p32-k_firmware
180 Idec kit-fc6a-p32-k
181 Idec kit-fc6a-p32-s_firmware
182 Idec kit-fc6a-p32-s
: Total Affected Vendor : 1 | Products : 182
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2024-41927.

URL Resource
https://jvn.jp/en/vu/JVNVU96959731/ Third Party Advisory
https://us.idec.com/media/24-RD-0256-EN.pdf Vendor Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2024-41927 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2024-41927 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • Initial Analysis by [email protected]

    Sep. 19, 2024

    Action Type Old Value New Value
    Added CVSS V3.1 NIST AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    Changed Reference Type https://jvn.jp/en/vu/JVNVU96959731/ No Types Assigned https://jvn.jp/en/vu/JVNVU96959731/ Third Party Advisory
    Changed Reference Type https://us.idec.com/media/24-RD-0256-EN.pdf No Types Assigned https://us.idec.com/media/24-RD-0256-EN.pdf Vendor Advisory
    Added CWE NIST CWE-319
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-24-kc_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-24-kc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-24-pc_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-24-pc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-24-ra_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-24-ra:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-24-ra-hg1g_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-24-ra-hg1g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-24-ra-hg2g-5tn_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-24-ra-hg2g-5tn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-24-ra-hg2g-5tt_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-24-ra-hg2g-5tt:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-24-rc-hg1g_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-24-rc-hg1g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-24-rc_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-24-rc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-24-rc-hg2g-5tn_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-24-rc-hg2g-5tn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-24-rc-hg2g-5tt_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-24-rc-hg2g-5tt:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-c24r-hg2g-vhp_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-c24r-hg2g-vhp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-c24r-hg3g-v8hp_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-c24r-hg3g-v8hp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-c24r-hg3g-vahp_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-c24r-hg3g-vahp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-c24r-hg4g-vhp_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-c24r-hg4g-vhp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-c24r-hg5g-vhp_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-c24r-hg5g-vhp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-16-pc_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.6 OR cpe:2.3:h:idec:kit-fc6a-16-pc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-16-ra_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-16-ra:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-16-kc_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-16-kc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-16-ra-hg1g_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-16-ra-hg1g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-16-ra-hg2g-5tn_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-16-ra-hg2g-5tn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-16-ra-hg2g-5tt_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-16-ra-hg2g-5tt:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-16-rc_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-16-rc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-16-rc-hg2g-5tn_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-16-rc-hg2g-5tn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-16-rc-hg1g_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-16-rc-hg1g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-16-rc-hg2g-5tt_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-16-rc-hg2g-5tt:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-16-kd_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-16-kd:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-16-pd_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-16-pd:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-c16r-hg2g-vhp_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-c16r-hg2g-vhp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-c16r-hg3g-v8hp_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-c16r-hg3g-v8hp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-c16r-hg3g-vahp_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-c16r-hg3g-vahp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-c16r-hg5g-vhp_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-c16r-hg5g-vhp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-c16r-hg5g-vhp_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-c16r-hg5g-vhp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-16-rd_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-16-rd:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-16-rd_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-16-rd:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-40-kd_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-40-kd:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-40-pc_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-40-pc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-40-pd_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-40-pd:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-40-ra_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-40-ra:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-40-rd_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-40-rd:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-40-rc_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.60 OR cpe:2.3:h:idec:kit-fc6a-40-rc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-d16p-hg1g_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-d16p-hg1g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-d16p-hg2g-5tn_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-d16p-hg2g-5tn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-d16p-hg2g-5tt_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-d16p-hg2g-5tt:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-d16r-hg2g-5tn_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-d16r-hg2g-5tn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-d16r-hg2g-5tt_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-d16r-hg2g-5tt:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-d16r-hg3g-v8hp_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-d16r-hg3g-v8hp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-d16r-hg3g-vahp_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-d16r-hg3g-vahp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-d16r-hg4g-vhp_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-d16r-hg4g-vhp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-d16r-hg5g-vhp_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-d16r-hg5g-vhp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-d16r-hg1g_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-d16r-hg1g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-d16r-hg2g-vhp_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-d16r-hg2g-vhp:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-p16-k_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-p16-k:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-p16-r_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-p16-r:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-p16-s_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-p16-s:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:ft1a-h12ra_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:ft1a-h12ra:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:ft1a-h24ra_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:ft1a-h24ra:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:ft1a-h24rc_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:ft1a-h24rc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:ft1a-h12rc_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:ft1a-h12rc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:ft1a-b12ra_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:ft1a-b12ra:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:ft1a-b24ra_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:ft1a-b24ra:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-12-bac_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-12-bac:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-12-hac_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-12-hac:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-12-bdc_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-12-bdc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-12-hdc_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-12-hdc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-24-hac_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-24-hac:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-24-bac_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-24-bac:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-24-bdc_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-24-bdc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-24-hdc_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-24-hdc:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-40-bac-r_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-40-bac-r:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-40-bdc-rk_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-40-bdc-rk:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-40-bdc-rs_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-40-bdc-rs:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-40-hac-r_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-40-hac-r:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-40-hdc-rk_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-40-hdc-rk:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-48-bac-k_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-48-bac-k:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-40-hdc-rs_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-40-hdc-rs:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-48-bac-s_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-48-bac-s:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-48-bdc-k_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-48-bdc-k:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-48-hac-k_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-48-hac-k:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-48-hac-s_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-48-hac-s:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-48-hac-k_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-48-hac-k:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-48-hdc-s_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-48-hdc-s:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-smart-48-bdc-s_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:kit-smart-48-bdc-s:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:ft1a-pc1_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:ft1a-pc1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:ft1a-pc2_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:ft1a-pc2:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:ft1a-pc3_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:ft1a-pc3:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:ft1a-pm1_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:ft1a-pm1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:ft9z-1a01_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:ft9z-1a01:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:ft9z-psp1pn05_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:ft9z-psp1pn05:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:hg9z-xcm2a_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.41 OR cpe:2.3:h:idec:hg9z-xcm2a:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-d32p-hg1g_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-d32p-hg1g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-d32p-hg2g-5tn_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-d32p-hg2g-5tn:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-d32p-hg2g-5tt_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-d32p-hg2g-5tt:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-p32-k_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-p32-k:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:idec:kit-fc6a-p32-s_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.40 OR cpe:2.3:h:idec:kit-fc6a-p32-s:-:*:*:*:*:*:*:*
  • CVE Received by [email protected]

    Sep. 04, 2024

    Action Type Old Value New Value
    Added Description Cleartext transmission of sensitive information vulnerability exists in multiple IDEC PLCs. If an attacker sends a specific command to PLC's serial communication port, user credentials may be obtained. As a result, the program of the PLC may be obtained, and the PLC may be manipulated.
    Added Reference JPCERT/CC https://us.idec.com/media/24-RD-0256-EN.pdf [No types assigned]
    Added Reference JPCERT/CC https://jvn.jp/en/vu/JVNVU96959731/ [No types assigned]
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2024-41927 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2024-41927 weaknesses.

CVSS31 - Vulnerability Scoring System
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
: