Certain switch models from PLANET Technology have an SSH service that improperly handles insufficiently authenticated connection requests, allowing unauthorized remote attackers to exploit this weakness to occupy connection slots and prevent legitimate users from accessing the SSH service.
                
            Metrics
Affected Vendors & Products
References
        History
                    Fri, 04 Oct 2024 15:30:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| First Time appeared | Planet Planet gs-4210-24p2s Planet gs-4210-24p2s Firmware Planet gs-4210-24pl4c Planet gs-4210-24pl4c Firmware | |
| CPEs | cpe:2.3:h:planet:gs-4210-24p2s:3.0:*:*:*:*:*:*:* cpe:2.3:h:planet:gs-4210-24pl4c:2.0:*:*:*:*:*:*:* cpe:2.3:o:planet:gs-4210-24p2s_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:planet:gs-4210-24pl4c_firmware:*:*:*:*:*:*:*:* | |
| Vendors & Products | Planet Planet gs-4210-24p2s Planet gs-4210-24p2s Firmware Planet gs-4210-24pl4c Planet gs-4210-24pl4c Firmware | 
Mon, 30 Sep 2024 18:30:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Metrics | ssvc 
 | 
Mon, 30 Sep 2024 07:00:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Description | Certain switch models from PLANET Technology have an SSH service that improperly handles insufficiently authenticated connection requests, allowing unauthorized remote attackers to exploit this weakness to occupy connection slots and prevent legitimate users from accessing the SSH service. | |
| Title | PLANET Technology switch devices - SSH server DoS attack | |
| Weaknesses | CWE-280 CWE-400 | |
| References |  | |
| Metrics | cvssV3_1 
 | 
 MITRE
                        MITRE
                    Status: PUBLISHED
Assigner: twcert
Published: 2024-09-30T06:56:40.972Z
Updated: 2024-09-30T17:32:59.893Z
Reserved: 2024-09-05T02:53:03.528Z
Link: CVE-2024-8451
 Vulnrichment
                        Vulnrichment
                    Updated: 2024-09-30T17:32:55.271Z
 NVD
                        NVD
                    Status : Analyzed
Published: 2024-09-30T07:15:04.417
Modified: 2024-10-04T15:09:42.283
Link: CVE-2024-8451
 Redhat
                        Redhat
                    No data.