Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these vulnerabilities.This CVE tracks the arbitrary null-byte write vulnerability located in firmware 1.2.10.9 of the P3-550E at offset `0xb69fc`.
References
Configurations
No configuration.
History
21 Nov 2024, 09:00
Type | Values Removed | Values Added |
---|---|---|
References | () https://talosintelligence.com/vulnerability_reports/TALOS-2024-1938 - | |
References | () https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1938 - |
10 Jun 2024, 17:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary |
|
28 May 2024, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-05-28 16:15
Updated : 2024-11-21 09:00
NVD link : CVE-2024-24955
Mitre link : CVE-2024-24955
CVE.ORG link : CVE-2024-24955
JSON object : View
Products Affected
No product.
CWE
CWE-787
Out-of-bounds Write