CVE-2024-6918

{"id": "CVE-2024-6918", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "cybersecurity@se.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2024-08-20T13:15:09.450", "references": [{"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-226-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-226-01.pdf", "source": "cybersecurity@se.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "cybersecurity@se.com", "description": [{"lang": "en", "value": "CWE-120"}]}], "descriptions": [{"lang": "en", "value": "CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability\nexists that could cause a crash of the Accutech Manager when receiving a specially crafted\nrequest over port 2536/TCP."}, {"lang": "es", "value": "CWE-120: Existe una vulnerabilidad de copia del b\u00fafer sin verificar el tama\u00f1o de la entrada ('Desbordamiento del b\u00fafer cl\u00e1sico') que podr\u00eda provocar un bloqueo de Accutech Manager al recibir una solicitud especialmente manipulada a trav\u00e9s del puerto 2536/TCP."}], "lastModified": "2024-08-20T15:44:20.567", "sourceIdentifier": "cybersecurity@se.com"}