{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-15T06:01:52.708","vulnerabilities":[{"cve":{"id":"CVE-2024-25830","sourceIdentifier":"cve@mitre.org","published":"2024-02-29T01:44:16.533","lastModified":"2025-06-10T19:22:13.847","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"F-logic DataCube3 v1.0 is vulnerable to Incorrect Access Control due to an improper directory access restriction. An unauthenticated, remote attacker can exploit this, by sending a URI that contains the path of the configuration file. A successful exploit could allow the attacker to extract the root and admin password."},{"lang":"es","value":"F-logic DataCube3 v1.0 es vulnerable a un control de acceso incorrecto debido a una restricción de acceso al directorio incorrecta. Un atacante remoto no autenticado puede aprovechar esto enviando un URI que contenga la ruta del archivo de configuración. Un exploit exitoso podría permitir al atacante extraer la contraseña de root y de administrador."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-22"},{"lang":"en","value":"CWE-284"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:f-logic:datacube3_firmware:1.0:*:*:*:*:*:*:*","matchCriteriaId":"1F73E586-1AD1-4280-B63B-CFB91BD33BF0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:f-logic:datacube3:-:*:*:*:*:*:*:*","matchCriteriaId":"C0F1221C-A9CB-4625-AABD-2E4890FA6E93"}]}]}],"references":[{"url":"https://neroteam.com/blog/f-logic-datacube3-vulnerability-report","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://neroteam.com/blog/f-logic-datacube3-vulnerability-report","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]}]}}]}