← voltar
CVE-2024-25137

AutomationDirect C-MORE EA9 HMI Stack-based Buffer Overflow

CVSS 4.3 MEDIUMEPSS 0.4%CWE-121
In AutomationDirect C-MORE EA9 HMI there is a program that copies a buffer of a size controlled by the user into a limited sized buffer on the stack which may lead to a stack overflow. The result of this stack-based buffer overflow can lead to denial-of-service conditions.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Produtos afetados
AutomationDirect · C-MORE EA9 HMI EA0-T7CL-RAutomationDirect · C-MORE EA9 HMI EA9-PGMSWAutomationDirect · C-MORE EA9 HMI EA9-RHMIAutomationDirect · C-MORE EA9 HMI EA9-T10CLAutomationDirect · C-MORE EA9 HMI EA9-T10WCLAutomationDirect · C-MORE EA9 HMI EA9-T12CLAutomationDirect · C-MORE EA9 HMI EA9-T15CLAutomationDirect · C-MORE EA9 HMI EA9-T15CL-RAutomationDirect · C-MORE EA9 HMI EA9-T6CLAutomationDirect · C-MORE EA9 HMI EA9-T7CLAutomationDirect · C-MORE EA9 HMI EA9-T8CL

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://https://www.cisa.gov/news-events/ics-advisories/icsa-24-086-01