← volver
CVE-2018-8872

CVE-2018-8872

EPSS 2.3%CWE-119
In Schneider Electric Triconex Tricon MP model 3008 firmware versions 10.0-10.4, system calls read directly from memory addresses within the control program area without any verification. Manipulating this data could allow attacker data to be copied anywhere within memory.
Productos afectados
Schneider Electric · Triconex Tricon

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://ics-cert.us-cert.gov/advisories/ICSA-18-107-02https://www.schneider-electric.com/en/download/document/SEVD-2017-347-01/http://www.securityfocus.com/bid/103947