{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-08T03:48:10.346","vulnerabilities":[{"cve":{"id":"CVE-2021-40341","sourceIdentifier":"cybersecurity@hitachienergy.com","published":"2023-01-05T22:15:08.860","lastModified":"2024-11-21T06:23:54.143","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"DES cipher, which has inadequate encryption strength, is used Hitachi Energy FOXMAN-UN to encrypt user credentials used to access the Network Elements. Successful exploitation allows sensitive information to be decrypted easily. This issue affects \n\n\n\n  *  FOXMAN-UN product: FOXMAN-UN R16A, FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B, FOXMAN-UN R11A, FOXMAN-UN R10C, FOXMAN-UN R9C; \n  *  UNEM product: UNEM R16A, UNEM R15B, UNEM R15A, UNEM R14B, UNEM R14A, UNEM R11B, UNEM R11A, UNEM R10C, UNEM R9C.\n\n\n\n\nList of CPEs: \n  *  cpe:2.3:a:hitachienergy:foxman-un:R16A:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:foxman-un:R15B:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:foxman-un:R15A:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:foxman-un:R14B:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:foxman-un:R14A:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:foxman-un:R11B:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:foxman-un:R11A:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:foxman-un:R10C:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:foxman-un:R9C:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:unem:R16A:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:unem:R15B:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:unem:R15A:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:unem:R14B:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:unem:R14A:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:unem:R11B:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:unem:R11A:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:unem:R10C:*:*:*:*:*:*:*\n  *  cpe:2.3:a:hitachienergy:unem:R9C:*:*:*:*:*:*:*\n\n\n\n"},{"lang":"es","value":"El cifrado DES, que tiene una potencia de cifrado inadecuada, se utiliza Hitachi Energy FOXMAN-UN para cifrar las credenciales de usuario utilizadas para acceder a los elementos de red. La explotación exitosa permite descifrar fácilmente la información confidencial. Este problema afecta a: \n* Productos FOXMAN-UN: FOXMAN-UN R16A, FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B, FOXMAN-UN R11A, FOXMAN-UN R10C, FOXMAN -ONU R9C; \n* Productos UNEM: UNEM R16A, UNEM R15B, UNEM R15A, UNEM R14B, UNEM R14A, UNEM R11B, UNEM R11A, UNEM R10C, UNEM R9C.\n\nLista de CPE: \n* cpe:2.3:a:hitachienergy:foxman-un:R16A:*:*:*:*:*:*:* \n* cpe:2.3:a:hitachienergy:foxman-un:R15B:*:* :*:*:*:*:* \n* cpe:2.3:a:hitachienergy:foxman-un:R15A:*:*:*:*:*:*:* \n* cpe:2.3:a:hitachienergy:foxman-un :R14B:*:*:*:*:*:*:* \n* cpe:2.3:a:hitachienergy:foxman-un:R14A:*:*:*:*:*:*:* \n* cpe:2.3:a :hitachienergy:foxman-un:R11B:*:*:*:*:*:*:* \n* cpe:2.3:a:hitachienergy:foxman-un:R11A:*:*:*:*:*:*:* \n* cpe:2.3:a:hitachienergy:foxman-un:R10C:*:*:*:*:*:*:* \n* cpe:2.3:a:hitachienergy:foxman-un:R9C:*:*:*:* :*:*:* \n* cpe:2.3:a:hitachienergy:unem:R16A:*:*:*:*:*:*:* \n* cpe:2.3:a:hitachienergy:unem:R15B:*:*:* :*:*:*:* \n* cpe:2.3:a:hitachienergy:unem:R15A:*:*:*:*:*:*:* \n* cpe:2.3:a:hitachienergy:unem:R14B:*:* :*:*:*:*:*\n* cpe:2.3:a:hitachienergy:unem:R14A:*:*:*:*:*:*:* \n* cpe:2.3:a:hitachienergy:unem:R11B:* :*:*:*:*:*:* \n* cpe:2.3:a:hitachienergy:unem:R11A:*:*:*:*:*:*:* \n* cpe:2.3:a:hitachienergy:unem:R10C :*:*:*:*:*:*:* \n* cpe:2.3:a:hitachienergy:unem:R9C:*:*:*:*:*:*:*"}],"metrics":{"cvssMetricV31":[{"source":"cybersecurity@hitachienergy.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.5,"impactScore":4.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"cybersecurity@hitachienergy.com","type":"Secondary","description":[{"lang":"en","value":"CWE-326"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-326"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:foxman-un:r9c:*:*:*:*:*:*:*","matchCriteriaId":"CF6EBF5E-662C-4B47-A683-05EBA284A1EA"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:foxman-un:r10c:*:*:*:*:*:*:*","matchCriteriaId":"900AF3F4-5C0B-48B9-91ED-5AABC42C0387"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:foxman-un:r11a:*:*:*:*:*:*:*","matchCriteriaId":"9CD89F83-BB89-45D4-BD95-7E9622C60948"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:foxman-un:r11b:*:*:*:*:*:*:*","matchCriteriaId":"33C7B43C-BC45-4151-BB30-9FBE9E737BE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:foxman-un:r14a:*:*:*:*:*:*:*","matchCriteriaId":"F1338D86-A03D-4604-A6E5-31244F18D919"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:foxman-un:r14b:*:*:*:*:*:*:*","matchCriteriaId":"B93B58ED-E004-4B52-A691-C771B34DD9C8"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:foxman-un:r15a:*:*:*:*:*:*:*","matchCriteriaId":"A7593C74-2882-45D3-AB32-3A45E3AECAAE"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:foxman-un:r15b:*:*:*:*:*:*:*","matchCriteriaId":"47606044-296D-4561-B9DC-82659BC666F2"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:foxman-un:r16a:*:*:*:*:*:*:*","matchCriteriaId":"7EE987B2-0620-44BB-AEA7-4E20CBE44822"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:unem:r9c:*:*:*:*:*:*:*","matchCriteriaId":"8FB66BE3-1031-4315-AF85-309BE3C35D7D"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:unem:r10c:*:*:*:*:*:*:*","matchCriteriaId":"F6DF9081-1544-4A69-9D9E-80759289056B"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:unem:r11a:*:*:*:*:*:*:*","matchCriteriaId":"C50E14E9-D2BF-4B6C-BF87-C9E4233D3AD0"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:unem:r11b:*:*:*:*:*:*:*","matchCriteriaId":"996564C6-8B44-4E89-A353-79B711A3DBBA"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:unem:r14a:*:*:*:*:*:*:*","matchCriteriaId":"6AB8CF64-17F7-488D-9763-A1487ECA405D"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:unem:r14b:*:*:*:*:*:*:*","matchCriteriaId":"6E96D583-2EBB-4AB2-A473-A0930E3B8D02"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:unem:r15a:*:*:*:*:*:*:*","matchCriteriaId":"E78C9E5B-5876-4F15-A98A-359193287446"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:unem:r15b:*:*:*:*:*:*:*","matchCriteriaId":"C3168F38-7B9E-4F4D-B6D0-1BAFB5FE05F5"},{"vulnerable":true,"criteria":"cpe:2.3:a:hitachienergy:unem:r16a:*:*:*:*:*:*:*","matchCriteriaId":"7ABB4A53-07A0-4F9A-824B-A1AC71CCB44E"}]}]}],"references":[{"url":"https://search.abb.com/library/Download.aspx?DocumentID=8DBD000083&LanguageCode=en&DocumentPartId=&Action=Launch","source":"cybersecurity@hitachienergy.com","tags":["Mitigation","Vendor Advisory"]},{"url":"https://search.abb.com/library/Download.aspx?DocumentID=8DBD000084&LanguageCode=en&DocumentPartId=&Action=Launch","source":"cybersecurity@hitachienergy.com","tags":["Mitigation","Vendor Advisory"]},{"url":"https://search.abb.com/library/Download.aspx?DocumentID=8DBD000083&LanguageCode=en&DocumentPartId=&Action=Launch","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]},{"url":"https://search.abb.com/library/Download.aspx?DocumentID=8DBD000084&LanguageCode=en&DocumentPartId=&Action=Launch","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]}]}}]}