Vulnerability CVE-2024-24976


Published: 2024-04-03

Description:
A denial of service vulnerability exists in the OAS Engine File Data Source Configuration functionality of Open Automation Software OAS Platform V19.00.0057. A specially crafted series of network requests can cause the running program to stop. An attacker can send a sequence of requests to trigger this vulnerability.

Type:

CWE-130

(Improper Handling of Length Parameter Inconsistency )

 References:
https://talosintelligence.com/vulnerability_reports/TALOS-2024-1948
https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1948

Copyright 2024, cxsecurity.com

 

Back to Top