Podatność CVE-2024-31484
Publikacja: 2024-05-14

Opis:
A vulnerability has been identified in CPC80 Central Processing/Communication (All versions < V16.41), CPCI85 Central Processing/Communication (All versions < V5.30). The affected device firmwares contain an improper null termination vulnerability while parsing a specific HTTP header. This could allow an attacker to execute code in the context of the current process or lead to denial of service condition.

W naszej bazie, znaleźliśmy następujące noty dla tego CVE:
Tytuł
Autor
Data
High
Siemens Unlocked JTAG Interface / Buffer Overflow
Stefan Viehboeck
05.12.2024

Typ:

CWE-119

 (Improper Restriction of Operations within the Bounds of a Memory Buffer)

 Referencje:
https://cert-portal.siemens.com/productcert/html/ssa-871704.html
Copyright 2024, cxsecurity.com

 

Back to Top