CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-31415

The Eaton Foreseer software provides the feasibility for the user to configure external servers for multiple purposes such as network management, user management, etc. The software uses encryption to store these configurations securely on the host machine. However, the keys used for this encryption were insecurely stored, which could be abused to possibly change or remove the server configuration.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.2%

CVSS Severity

CVSS v3 Score 6.3

References

https://www.eaton.com/content/dam/eaton/company/news-insights/cybersecurity/security-bulletins/etn-va-2024-1008.pdf

Products affected by CVE-2024-31415

Eaton » Foreseer Electrical Power Monitoring System » Version: 4.0

cpe:2.3:a:eaton:foreseer_electrical_power_monitoring_system:4.0
Eaton » Foreseer Electrical Power Monitoring System » Version: 7.0

cpe:2.3:a:eaton:foreseer_electrical_power_monitoring_system:7.0
Eaton » Foreseer Electrical Power Monitoring System » Version: 7.5

cpe:2.3:a:eaton:foreseer_electrical_power_monitoring_system:7.5
Eaton » Foreseer Electrical Power Monitoring System » Version: 7.6

cpe:2.3:a:eaton:foreseer_electrical_power_monitoring_system:7.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-31415

Products

Pricing

Contact Us