Product: Korenix JETIO 6550 switch

Affected Version: Not specified in the article, but the vulnerability is identified as CVE-2024-2371. Severity: Critical

Vulnerability Details Description: The Korenix JETIO 6550 switch has a critical vulnerability, CVE-2024-2371, related to its Simple Network Management Protocol (SNMP) implementation. This flaw arises from insufficient access controls, which allows unauthorized users to exploit SNMP to gain access to sensitive data. Impact: Exploitation of this vulnerability poses significant risks to industrial control systems (ICS) and critical infrastructure. An attacker can bypass authentication to retrieve sensitive data, including configuration details and network topology information. This could be used to gather intelligence for targeted attacks, disrupt operations, or manipulate systems.

Steps to Reproduce:

1. Identify a Korenix JETIO 6550 switch with the vulnerability.

2. Send crafted SNMP requests to bypass authentication.

3. Access and retrieve sensitive data from the system.

Reference:

• Korenix JETIO 6550 - CVE-2024-2371

• CVE-2024-2371