CVE-2024-24963

{"id": "CVE-2024-24963", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "talos-cna@cisco.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2024-05-28T16:15:15.450", "references": [{"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1939", "tags": ["Exploit", "Third Party Advisory"], "source": "talos-cna@cisco.com"}, {"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1939", "tags": ["Exploit", "Third Party Advisory"], "source": "talos-cna@cisco.com"}, {"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1939", "tags": ["Exploit", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1939", "tags": ["Exploit", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "talos-cna@cisco.com", "description": [{"lang": "en", "value": "CWE-121"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-787"}]}], "descriptions": [{"lang": "en", "value": "A stack-based buffer overflow vulnerability exists in the Programming Software Connection FileSelect functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to stack-based buffer overflow. An attacker can send an unauthenticated packet to trigger this vulnerability.This CVE tracks the stack-based buffer overflow that occurs at offset `0xb6e84` of v1.2.10.9 of the P3-550E firmware."}, {"lang": "es", "value": "Existe una vulnerabilidad de desbordamiento de b\u00fafer en la regi\u00f3n stack de la memoria en la funcionalidad FileSelect de conexi\u00f3n del software de programaci\u00f3n de AutomationDirect P3-550E 1.2.10.9. Un paquete de red especialmente manipulado puede provocar un desbordamiento de b\u00fafer en la regi\u00f3n stack de la memoria. Un atacante puede enviar un paquete no autenticado para desencadenar esta vulnerabilidad. Este CVE rastrea el desbordamiento de b\u00fafer en la regi\u00f3n stack de la memoria que ocurre en el desplazamiento `0xb6e84` de la versi\u00f3n 1.2.10.9 del firmware P3-550E."}], "lastModified": "2025-02-12T18:31:43.123", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:automationdirect:p3-550e_firmware:1.2.10.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4A393F14-3BD3-44DE-B06F-9235AB62C68F"}, {"criteria": "cpe:2.3:o:automationdirect:p3-550e_firmware:4.1.1.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5A4772E7-8788-4DB5-98CE-25F0255E0386"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:automationdirect:p3-550e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5086EF1F-C3CE-4B5F-A352-67CE332A6C4F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:automationdirect:p3-550_firmware:1.2.10.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CC227F17-D280-4C74-A73E-8F92158686BE"}, {"criteria": "cpe:2.3:o:automationdirect:p3-550_firmware:4.1.1.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5CC4A2E2-DF6D-427A-88E6-54FD6D11BDFC"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:automationdirect:p3-550:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BB4DDF3B-AB0E-4DDD-9865-D4EEDCCA78DE"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:automationdirect:p3-530_firmware:1.2.10.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0462A9CE-4EAA-4C12-9147-F530C42328D3"}, {"criteria": "cpe:2.3:o:automationdirect:p3-530_firmware:4.1.1.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C8277A48-94C7-40F3-A822-F6311B2CDA94"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:automationdirect:p3-530:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D58D4140-C719-4EDA-8963-667F9FF21970"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:automationdirect:p2-550_firmware:1.2.10.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AAF96AFD-40E3-4FB6-BAD7-067D9E257A08"}, {"criteria": "cpe:2.3:o:automationdirect:p2-550_firmware:4.1.1.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D476CC45-B4A1-4210-9347-9854BB0A86AA"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:automationdirect:p2-550:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "386D70E8-70D6-4D25-818C-2218E1B1AC6C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:automationdirect:p1-550_firmware:1.2.10.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9B7F3A1F-BD96-49A7-A340-0E5E1893326C"}, {"criteria": "cpe:2.3:o:automationdirect:p1-550_firmware:4.1.1.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "27710A58-507C-43BB-849F-7238F5D6D9ED"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:automationdirect:p1-550:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8FAF2C99-BC5F-4E99-A3A8-FBBDDC24C933"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:automationdirect:p1-540_firmware:1.2.10.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "01C6DFFC-374B-4314-9230-53BD01BD6574"}, {"criteria": "cpe:2.3:o:automationdirect:p1-540_firmware:4.1.1.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "51095762-A87C-4A1D-A4E2-679462DC8FA9"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:automationdirect:p1-540:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4DB6B9FC-390E-43FD-9DF9-AAB1A9CDAA48"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "talos-cna@cisco.com"}