What is CVE-2021-40341?

CVE-2021-40341 is a vulnerability where the DES cipher with inadequate encryption strength is used in Hitachi Energy FOXMAN-UN to encrypt user credentials, making sensitive information easily decrypted.

What is the severity of CVE-2021-40341?

The severity of CVE-2021-40341 is high, with a severity value of 5.5.

How can CVE-2021-40341 be exploited?

Successful exploitation of CVE-2021-40341 allows an attacker to easily decrypt sensitive information by exploiting the inadequate encryption strength of the DES cipher.

Are there any references for CVE-2021-40341?

Yes, you can find more information about CVE-2021-40341 at the following references: [Reference 1](https://search.abb.com/library/Download.aspx?DocumentID=8DBD000083&LanguageCode=en&DocumentPartId=&Action=Launch) and [Reference 2](https://search.abb.com/library/Download.aspx?DocumentID=8DBD000084&LanguageCode=en&DocumentPartId=&Action=Launch).

Vulnerability/
CVE-2021-40341

high

7.1

CWE

326

5/1/2023

4/8/2024

CVE-2021-40341: Weak DES encryption

First published: Thu Jan 05 2023(Updated: )

DES cipher, which has inadequate encryption strength, is used Hitachi Energy FOXMAN-UN to encrypt user credentials used to access the Network Elements. Successful exploitation allows sensitive information to be decrypted easily. This issue affects * FOXMAN-UN product: FOXMAN-UN R16A, FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B, FOXMAN-UN R11A, FOXMAN-UN R10C, FOXMAN-UN R9C; * UNEM product: UNEM R16A, UNEM R15B, UNEM R15A, UNEM R14B, UNEM R14A, UNEM R11B, UNEM R11A, UNEM R10C, UNEM R9C. List of CPEs: * cpe:2.3:a:hitachienergy:foxman-un:R16A:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:foxman-un:R15B:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:foxman-un:R15A:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:foxman-un:R14B:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:foxman-un:R14A:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:foxman-un:R11B:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:foxman-un:R11A:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:foxman-un:R10C:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:foxman-un:R9C:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:unem:R16A:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:unem:R15B:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:unem:R15A:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:unem:R14B:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:unem:R14A:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:unem:R11B:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:unem:R11A:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:unem:R10C:*:*:*:*:*:*:* * cpe:2.3:a:hitachienergy:unem:R9C:*:*:*:*:*:*:*

Credit: cybersecurity@hitachienergy.com

Affected Software	Affected Version	How to fix
Hitachi Energy Foxman Un	=r9c
Hitachi Energy Foxman Un	=r10c
Hitachi Energy Foxman Un	=r11a
Hitachi Energy Foxman Un	=r11b
Hitachi Energy Foxman Un	=r14a
Hitachi Energy Foxman Un	=r14b
Hitachi Energy Foxman Un	=r15a
Hitachi Energy Foxman Un	=r15b
Hitachi Energy Foxman Un	=r16a
Hitachi Energy Unem	=r9c
Hitachi Energy Unem	=r10c
Hitachi Energy Unem	=r11a
Hitachi Energy Unem	=r11b
Hitachi Energy Unem	=r14a
Hitachi Energy Unem	=r14b
Hitachi Energy Unem	=r15a
Hitachi Energy Unem	=r15b
Hitachi Energy Unem	=r16a

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2021-40341?
CVE-2021-40341 is a vulnerability where the DES cipher with inadequate encryption strength is used in Hitachi Energy FOXMAN-UN to encrypt user credentials, making sensitive information easily decrypted.
What is the severity of CVE-2021-40341?
The severity of CVE-2021-40341 is high, with a severity value of 5.5.
Which Hitachi Energy FOXMAN-UN versions are affected by CVE-2021-40341?
CVE-2021-40341 affects Hitachi Energy FOXMAN-UN versions: FOXMAN-UN R16A, FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B, FOXMAN-UN R11A, FOXMAN-UN R10C, and FOXMAN-UN R9C.
How can CVE-2021-40341 be exploited?
Successful exploitation of CVE-2021-40341 allows an attacker to easily decrypt sensitive information by exploiting the inadequate encryption strength of the DES cipher.
Are there any references for CVE-2021-40341?
Yes, you can find more information about CVE-2021-40341 at the following references: [Reference 1](https://search.abb.com/library/Download.aspx?DocumentID=8DBD000083&LanguageCode=en&DocumentPartId=&Action=Launch) and [Reference 2](https://search.abb.com/library/Download.aspx?DocumentID=8DBD000084&LanguageCode=en&DocumentPartId=&Action=Launch).

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/title
agent/weakness
agent/severity
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/hitachienergy
canonical/hitachi energy foxman un
version/hitachi energy foxman un/r9c
version/hitachi energy foxman un/r10c
version/hitachi energy foxman un/r11a
version/hitachi energy foxman un/r11b
version/hitachi energy foxman un/r14a
version/hitachi energy foxman un/r14b
version/hitachi energy foxman un/r15a
version/hitachi energy foxman un/r15b
version/hitachi energy foxman un/r16a
canonical/hitachi energy unem
version/hitachi energy unem/r9c
version/hitachi energy unem/r10c
version/hitachi energy unem/r11a
version/hitachi energy unem/r11b
version/hitachi energy unem/r14a
version/hitachi energy unem/r14b
version/hitachi energy unem/r15a
version/hitachi energy unem/r15b
version/hitachi energy unem/r16a

CVE-2021-40341: Weak DES encryption

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2021-40341?

What is the severity of CVE-2021-40341?

Which Hitachi Energy FOXMAN-UN versions are affected by CVE-2021-40341?

How can CVE-2021-40341 be exploited?

Are there any references for CVE-2021-40341?

Company

Resources

Contact