{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2024-4008","assignerOrgId":"2b718523-d88f-4f37-9bbd-300c20644bf9","state":"PUBLISHED","assignerShortName":"ABB","dateReserved":"2024-04-19T17:09:06.029Z","datePublished":"2024-06-05T17:15:56.523Z","dateUpdated":"2025-09-17T05:33:02.694Z"},"containers":{"cna":{"affected":[{"collectionURL":"https://new.abb.com/products/de/2TMA310010B0001/sd-u12-55-11-825","defaultStatus":"unaffected","platforms":["proprietary"],"product":"2.4! Display 55, SD/U12.55.11-825","vendor":"ABB, Busch-Jaeger","versions":[{"status":"affected","version":"1.00","versionType":"custom"}]},{"collectionURL":"https://new.abb.com/products/de/2TMA310011B0001/sd-u12-55-1-825","defaultStatus":"unaffected","platforms":["proprietary"],"product":"2.4! Display 55, SD/SD/U12.55.1-825","vendor":"ABB, Busch-Jaeger","versions":[{"status":"affected","version":"1.00","versionType":"custom"}]},{"collectionURL":"https://new.abb.com/products/de/2TMA310010B0003/","defaultStatus":"unaffected","platforms":["proprietary"],"product":"2.4! Display 63, SD/U12.63.11-825","vendor":"ABB, Busch-Jaeger","versions":[{"status":"affected","version":"1.00","versionType":"custom"}]},{"collectionURL":"https://new.abb.com/products/de/2TMA310011B0003/rt-u12-86-1-825","defaultStatus":"unaffected","platforms":["proprietary"],"product":"RoomTouch 4\", RT/U12.86.1-825","vendor":"ABB, Busch-Jaeger","versions":[{"status":"affected","version":"1.00","versionType":"custom"}]},{"collectionURL":"https://new.abb.com/products/de/2TMA310010B0004/rt-u12-86-11-825","defaultStatus":"unaffected","product":"RoomTouch 4\", RT/U12.86.11-825","vendor":"ABB, Busch-Jaeger","versions":[{"status":"affected","version":"1.00","versionType":"custom"}]},{"collectionURL":"https://new.abb.com/products/de/2TMA310010B0006/sd-u12-70-11-4015","defaultStatus":"unaffected","product":"2,4'' Display 70, SD/U12.70.11-4015","vendor":"ABB, Busch-Jaeger","versions":[{"status":"affected","version":"1.00","versionType":"custom"}]},{"collectionURL":"https://new.abb.com/products/de/2TMA310011B00004/sd-u12-70-1-4015","defaultStatus":"unaffected","product":"2,4'' Display 70, SD-U12-70-1-4015","vendor":"ABB, Busch-Jaeger","versions":[{"status":"affected","version":"1.00","versionType":"custom"}]},{"collectionURL":"https://new.abb.com/products/de/2TMA310010W0001/rt-u12-86-11-811","defaultStatus":"unaffected","platforms":["proprietary"],"product":"RoomTouch 4\", RT/U12.86.11-811","vendor":"ABB, Busch-Jaeger","versions":[{"status":"affected","version":"1.00","versionType":"custom"}]},{"collectionURL":"https://new.abb.com/products/de/2TMA310011W0001/rt-u12-86-1-811","defaultStatus":"unaffected","platforms":["proprietary"],"product":"RoomTouch 4\", RT-U12-86-1-811","vendor":"ABB, Busch-Jaeger","versions":[{"status":"affected","version":"1.00","versionType":"custom"}]},{"collectionURL":"https://new.abb.com/products/de/2CKA006120A0079/ba-u1-0-11","defaultStatus":"unaffected","platforms":["proprietary"],"product":"BCU KNX, BA-U1.0.11","vendor":"ABB, Busch-Jaeger","versions":[{"status":"affected","version":"1.3.0.33","versionType":"custom"}]},{"collectionURL":"https://new.abb.com/products/de/2CKA006120A0080/ba-u1-0-1","defaultStatus":"unaffected","platforms":["proprietary"],"product":"BCU KNX, BA-U1.0.1","vendor":"ABB, Busch-Jaeger","versions":[{"status":"affected","version":"1.3.0.33","versionType":"custom"}]},{"collectionURL":"https://new.abb.com/products/de/2CKA006120A0081/ba-u1-0-21","defaultStatus":"unaffected","platforms":["proprietary"],"product":"BCU KNX, BA-U1.0.21","vendor":"ABB, Busch-Jaeger","versions":[{"status":"affected","version":"1.3.0.33","versionType":"custom"}]}],"datePublic":"2024-06-05T16:16:00.000Z","descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"FDSK Leak in ABB, Busch-Jaeger, FTS Display (version 1.00) and BCU (version 1.3.0.33) allows attacker to take control via access to local KNX Bus-System "}],"value":"FDSK Leak in ABB, Busch-Jaeger, FTS Display (version 1.00) and BCU (version 1.3.0.33) allows attacker to take control via access to local KNX Bus-System"}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"ADJACENT_NETWORK","availabilityImpact":"HIGH","baseScore":9.6,"baseSeverity":"CRITICAL","confidentialityImpact":"LOW","integrityImpact":"HIGH","privilegesRequired":"NONE","scope":"CHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:H","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]},{"cvssV4_0":{"Automatable":"NO","Recovery":"NOT_DEFINED","Safety":"NEGLIGIBLE","attackComplexity":"LOW","attackRequirements":"PRESENT","attackVector":"ADJACENT","baseScore":7.3,"baseSeverity":"HIGH","privilegesRequired":"NONE","providerUrgency":"GREEN","subAvailabilityImpact":"HIGH","subConfidentialityImpact":"LOW","subIntegrityImpact":"HIGH","userInteraction":"NONE","valueDensity":"DIFFUSE","vectorString":"CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:L/VI:H/VA:H/SC:L/SI:H/SA:H/S:N/AU:N/V:D/RE:M/U:Green","version":"4.0","vulnAvailabilityImpact":"HIGH","vulnConfidentialityImpact":"LOW","vulnIntegrityImpact":"HIGH","vulnerabilityResponseEffort":"MODERATE"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-497","description":"CWE-497 [LLM] Exposure of Sensitive System Information to an Unauthorized Control Sphere","lang":"en","type":"CWE"}]}],"providerMetadata":{"orgId":"2b718523-d88f-4f37-9bbd-300c20644bf9","shortName":"ABB","dateUpdated":"2025-09-17T05:33:02.694Z"},"references":[{"url":"https://search.abb.com/library/Download.aspx?DocumentID=9AKK108464A0803&LanguageCode=en&DocumentPartId=&Action=Launch"}],"source":{"discovery":"UNKNOWN"},"title":"FDSK Leak in KNX Secure Devices","x_generator":{"engine":"Vulnogram 0.2.0"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2024-06-10T11:08:58.207948Z","id":"CVE-2024-4008","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-06-10T11:09:06.018Z"}},{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-01T20:26:57.325Z"},"title":"CVE Program Container","references":[{"url":"https://search.abb.com/library/Download.aspx?DocumentID=9AKK108464A0803&LanguageCode=en&DocumentPartId=&Action=Launch","tags":["x_transferred"]}]}]}}