CVE-2024-24485 – This vulnerability in silex technology DS-600 f... (How to Fix)

Q: What is the severity of CVE-2024-24485?

CVE-2024-24485 has a CVSS score of 7.5 (HIGH). This vulnerability in silex technology DS-600 firmware allows remote attackers to retrieve sensitive information via an unauthenticated GET EEP_DATA command. It affects organizations using DS-600 devices with vulnerable firmware versions, potentially exposing configuration data or credentials.

📋 TL;DR

This vulnerability in silex technology DS-600 firmware allows remote attackers to retrieve sensitive information via an unauthenticated GET EEP_DATA command. It affects organizations using DS-600 devices with vulnerable firmware versions, potentially exposing configuration data or credentials.

💻 Affected Systems

Products:

silex technology DS-600

Versions: Firmware v1.4.1

Operating Systems: Embedded firmware

Default Config Vulnerable: ⚠️ Yes

Notes: Affects the web interface/management component of the device.

📦 What is this software?

Ds 600 Firmware by Silextechnology

View all CVEs affecting Ds 600 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers obtain administrative credentials or encryption keys, leading to complete device compromise, network infiltration, or data exfiltration.

🟠

Likely Case

Attackers access device configuration data, potentially enabling further attacks or reconnaissance.

🟢

If Mitigated

Information exposure limited to non-critical data if proper network segmentation and access controls are implemented.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Simple HTTP GET request to vulnerable endpoint; exploit details available in public advisory.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: Not found in provided references

Restart Required: No

Instructions:

Check vendor website for firmware updates; if unavailable, implement workarounds.

🔧 Temporary Workarounds

Network Access Control

all

Restrict network access to DS-600 management interface

Firewall Rules

all

Block external access to DS-600 web interface ports

🧯 If You Can't Patch

Isolate DS-600 devices on separate VLAN with strict access controls
Monitor network traffic for suspicious GET requests to EEP_DATA endpoint

🔍 How to Verify

Check if Vulnerable:

Send HTTP GET request to device IP at endpoint related to EEP_DATA; if sensitive data is returned without authentication, device is vulnerable.

Check Version:

Check firmware version via device web interface or management console

Verify Fix Applied:

After applying controls, test that EEP_DATA endpoint no longer returns sensitive information without proper authentication.

📡 Detection & Monitoring

Log Indicators:

HTTP GET requests to EEP_DATA endpoints in web server logs
Unauthenticated access attempts to management interface

Network Indicators:

Unusual HTTP traffic patterns to DS-600 devices
External IPs accessing internal device management ports

SIEM Query:

source="DS-600" AND (uri="*EEP_DATA*" OR method="GET" AND status=200)

📊 Metadata

CVE ID: CVE-2024-24485

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE: CWE-284

Published: April 15, 2024

Last Updated: April 10, 2025

🔗 References

https://github.com/MostafaSoliman/Security-Advisories/blob/master/CVE-2024-24485 Third Party Advisory
https://github.com/MostafaSoliman/Security-Advisories/blob/master/CVE-2024-24485 Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-24485, you might also want to check these: