{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-07T00:05:33.314","vulnerabilities":[{"cve":{"id":"CVE-2024-34162","sourceIdentifier":"vultures@jpcert.or.jp","published":"2024-11-26T08:15:06.123","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The web interface of the affected devices is designed to hide the LDAP credentials even for administrative users. But configuring LDAP authentication to \"SIMPLE\", the device communicates with the LDAP server in clear-text. The LDAP password can be retrieved from this clear-text communication. As for the details of affected product names, model numbers, and versions, refer to the information provided by the respective vendors listed under [References]."},{"lang":"es","value":"La interfaz web de los dispositivos afectados está diseñada para ocultar las credenciales LDAP incluso para los usuarios administrativos. Pero al configurar la autenticación LDAP en \"SIMPLE\", el dispositivo se comunica con el servidor LDAP en texto sin formato. La contraseña LDAP se puede recuperar a partir de esta comunicación en texto sin formato. En cuanto a los detalles de los nombres de los productos afectados, los números de modelo y las versiones, consulte la información proporcionada por los respectivos proveedores que se enumeran en [Referencias]."}],"metrics":{"cvssMetricV31":[{"source":"vultures@jpcert.or.jp","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"vultures@jpcert.or.jp","type":"Secondary","description":[{"lang":"en","value":"CWE-767"}]}],"references":[{"url":"https://global.sharp/products/copier/info/info_security_2024-05.html","source":"vultures@jpcert.or.jp"},{"url":"https://jp.sharp/business/print/information/info_security_2024-05.html","source":"vultures@jpcert.or.jp"},{"url":"https://jvn.jp/en/vu/JVNVU93051062/","source":"vultures@jpcert.or.jp"},{"url":"https://pierrekim.github.io/blog/2024-06-27-sharp-mfp-17-vulnerabilities.html","source":"vultures@jpcert.or.jp"},{"url":"https://www.toshibatec.co.jp/information/20240531_02.html","source":"vultures@jpcert.or.jp"},{"url":"https://www.toshibatec.com/information/20240531_02.html","source":"vultures@jpcert.or.jp"},{"url":"http://seclists.org/fulldisclosure/2024/Jul/0","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}