GCVE - cpe:2.3:o:cpplusworld:cp-vnr-3104_firmware:b3223p22c02424:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:cpplusworld:cp-vnr-3104_firmware:b3223p22c02424:*:*:*:*:*:*:*

part: o version: b3223p22c02424 update: *

Vendor	Cpplusworld (`e4e12946-648c-5a4d-a5ad-5d3f4aeda4d2`)
Product	Cp Vnr 3104 Firmware (`5b4e5f24-23bb-5595-8e81-f53be676d765`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-54849`	vulnerable	2026-06-03 14:57:41.797417	Details available An issue in CP Plus CP-VNR-3104 B3223P22C02424 allows attackers to obtain the second RSA private key and access sensitive data or execute a man-in-the-middle attack. Published: 2025-01-10T00:00:00.000Z Updated: 2025-01-13T20:16:37.016Z Open on db.gcve.eu Reference links https://nvd.nist.gov/vuln/detail/CVE-2020-15522 https://payatu.com/blog/solving-the-problem-of-encrypted-firmware/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-54848`	vulnerable	2026-06-03 14:57:41.797031	Details available Improper handling and storage of certificates in CP Plus CP-VNR-3104 B3223P22C02424 allow attackers to decrypt communications or execute a man-in-the-middle attacks. Published: 2025-01-10T00:00:00.000Z Updated: 2025-01-13T20:21:01.204Z Open on db.gcve.eu Reference links https://payatu.com/blog/solving-the-problem-of-encrypted-firmware/ https://capec.mitre.org/data/definitions/233 https://nvd.nist.gov/vuln/detail/CVE-2021-21551 https://github.com/Yashodhanvivek/CP-VNR-3104-NVR-Vulnerabilties/blob/main/CPPlus_CP-VNR-3104_Security_Assessment.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-54847`	vulnerable	2026-06-03 14:57:41.796482	Details available An issue in CP Plus CP-VNR-3104 B3223P22C02424 allows attackers to access the Diffie-Hellman (DH) parameters and access sensitive data or execute a man-in-the-middle attack. Published: 2025-01-10T00:00:00.000Z Updated: 2025-01-13T20:26:29.925Z Open on db.gcve.eu Reference links https://payatu.com/blog/solving-the-problem-of-encrypted-firmware/ https://nvd.nist.gov/vuln/detail/CVE-2023-3817 https://github.com/Yashodhanvivek/CP-VNR-3104-NVR-Vulnerabilties/blob/main/CPPlus_CP-VNR-3104_Security_Assessment.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-54846`	vulnerable	2026-06-03 14:57:41.795080	Details available An issue in CP Plus CP-VNR-3104 B3223P22C02424 allows attackers to obtain the EC private key and access sensitive data or execute a man-in-the-middle attack. Published: 2025-01-10T00:00:00.000Z Updated: 2025-01-13T20:28:12.941Z Open on db.gcve.eu Reference links https://nvd.nist.gov/vuln/detail/CVE-2020-15522 https://payatu.com/blog/solving-the-problem-of-encrypted-firmware/ https://github.com/Yashodhanvivek/CP-VNR-3104-NVR-Vulnerabilties/blob/main/CPPlus_CP-VNR-3104_Security_Assessment.pdf	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

CP PLUS CP-VNR-3104 Firmware B3223P22C02424

PURL mappings

Vulnerability references

Contribute