CVE-2024-37649: n/a
CVE-2024-37649 is an insecure permissions vulnerability found in SecureSTATION version 2. 5. 5. 3116-S50-SMA-B20160811A and earlier. It allows an attacker with physical proximity to the device to modify user credentials and thereby obtain sensitive information. The vulnerability does not require authentication or user interaction, but physical access is necessary. The CVSS score is 4. 6, indicating a medium severity level, primarily impacting confidentiality without affecting integrity or availability. No known exploits are currently reported in the wild. Organizations using affected SecureSTATION versions should prioritize physical security controls and monitor for unauthorized access.
AI Analysis
Technical Summary
CVE-2024-37649 is a vulnerability classified under CWE-281 (Improper Authentication) affecting SecureSTATION devices version 2.5.5.3116-S50-SMA-B20160811A and earlier. The vulnerability arises from insecure permissions that allow an attacker with physical proximity to the device to modify user credentials without requiring authentication or user interaction. This modification can lead to unauthorized disclosure of sensitive information stored or accessible via the device. The attack vector is physical access, meaning the attacker must be near the device to exploit the vulnerability. The CVSS 3.1 base score is 4.6, reflecting a medium severity due to the limited attack vector but high confidentiality impact. The vulnerability does not affect system integrity or availability, and no known exploits have been reported in the wild as of the publication date. The lack of patch information suggests that vendors or administrators need to implement compensating controls until a fix is available. The vulnerability highlights the importance of secure permission settings and physical security in embedded or network devices like SecureSTATION.
Potential Impact
The primary impact of CVE-2024-37649 is the unauthorized disclosure of sensitive information due to the modification of user credentials by an attacker with physical access. This can lead to compromised confidentiality of user data or system configurations. While the vulnerability does not directly affect system integrity or availability, the exposure of credentials can facilitate further unauthorized access or lateral movement within an organization’s network. Organizations relying on SecureSTATION devices in critical infrastructure, telecommunications, or enterprise environments may face increased risk if physical security is insufficient. The medium severity score reflects the balance between the high confidentiality impact and the requirement for physical proximity, limiting the scope of exploitation. However, in environments where devices are deployed in publicly accessible or poorly secured locations, the risk is significantly elevated.
Mitigation Recommendations
1. Enforce strict physical security controls around SecureSTATION devices to prevent unauthorized physical access, including locked enclosures and surveillance. 2. Regularly audit user credentials and access logs to detect unauthorized modifications promptly. 3. Implement network segmentation to limit the impact of compromised credentials and restrict access to sensitive systems. 4. Monitor device configurations and permissions for unexpected changes, using automated tools where possible. 5. Engage with the vendor for updates or patches addressing this vulnerability and apply them promptly once available. 6. Consider deploying tamper-evident seals or intrusion detection mechanisms on devices to alert on physical tampering attempts. 7. Train personnel on the importance of physical security and the risks associated with device access. 8. If patching is delayed, consider temporary compensating controls such as disabling unused interfaces or restricting device management access to trusted personnel only.
Affected Countries
United States, Germany, Japan, South Korea, United Kingdom, France, Canada, Australia, India, Brazil
CVE-2024-37649: n/a
Description
CVE-2024-37649 is an insecure permissions vulnerability found in SecureSTATION version 2. 5. 5. 3116-S50-SMA-B20160811A and earlier. It allows an attacker with physical proximity to the device to modify user credentials and thereby obtain sensitive information. The vulnerability does not require authentication or user interaction, but physical access is necessary. The CVSS score is 4. 6, indicating a medium severity level, primarily impacting confidentiality without affecting integrity or availability. No known exploits are currently reported in the wild. Organizations using affected SecureSTATION versions should prioritize physical security controls and monitor for unauthorized access.
AI-Powered Analysis
Technical Analysis
CVE-2024-37649 is a vulnerability classified under CWE-281 (Improper Authentication) affecting SecureSTATION devices version 2.5.5.3116-S50-SMA-B20160811A and earlier. The vulnerability arises from insecure permissions that allow an attacker with physical proximity to the device to modify user credentials without requiring authentication or user interaction. This modification can lead to unauthorized disclosure of sensitive information stored or accessible via the device. The attack vector is physical access, meaning the attacker must be near the device to exploit the vulnerability. The CVSS 3.1 base score is 4.6, reflecting a medium severity due to the limited attack vector but high confidentiality impact. The vulnerability does not affect system integrity or availability, and no known exploits have been reported in the wild as of the publication date. The lack of patch information suggests that vendors or administrators need to implement compensating controls until a fix is available. The vulnerability highlights the importance of secure permission settings and physical security in embedded or network devices like SecureSTATION.
Potential Impact
The primary impact of CVE-2024-37649 is the unauthorized disclosure of sensitive information due to the modification of user credentials by an attacker with physical access. This can lead to compromised confidentiality of user data or system configurations. While the vulnerability does not directly affect system integrity or availability, the exposure of credentials can facilitate further unauthorized access or lateral movement within an organization’s network. Organizations relying on SecureSTATION devices in critical infrastructure, telecommunications, or enterprise environments may face increased risk if physical security is insufficient. The medium severity score reflects the balance between the high confidentiality impact and the requirement for physical proximity, limiting the scope of exploitation. However, in environments where devices are deployed in publicly accessible or poorly secured locations, the risk is significantly elevated.
Mitigation Recommendations
1. Enforce strict physical security controls around SecureSTATION devices to prevent unauthorized physical access, including locked enclosures and surveillance. 2. Regularly audit user credentials and access logs to detect unauthorized modifications promptly. 3. Implement network segmentation to limit the impact of compromised credentials and restrict access to sensitive systems. 4. Monitor device configurations and permissions for unexpected changes, using automated tools where possible. 5. Engage with the vendor for updates or patches addressing this vulnerability and apply them promptly once available. 6. Consider deploying tamper-evident seals or intrusion detection mechanisms on devices to alert on physical tampering attempts. 7. Train personnel on the importance of physical security and the risks associated with device access. 8. If patching is delayed, consider temporary compensating controls such as disabling unused interfaces or restricting device management access to trusted personnel only.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- mitre
- Date Reserved
- 2024-06-10T00:00:00.000Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 699f6c6ab7ef31ef0b563d71
Added to database: 2/25/2026, 9:40:58 PM
Last enriched: 2/26/2026, 5:16:43 AM
Last updated: 2/26/2026, 6:44:43 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Related Threats
CVE-2026-25191: Uncontrolled Search Path Element in Digital Arts Inc. FinalCode Ver.5 series
HighCVE-2026-23703: Incorrect default permissions in Digital Arts Inc. FinalCode Ver.5 series
HighCVE-2026-1311: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in bearsthemes Worry Proof Backup
HighFinding Signal in the Noise: Lessons Learned Running a Honeypot with AI Assistance [Guest Diary], (Tue, Feb 24th)
MediumCVE-2026-2506: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in motahar1 EM Cost Calculator
MediumActions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console in Console -> Billing for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.