VYPR
Unrated severityNVD Advisory· Published May 22, 2019· Updated Aug 5, 2024

CVE-2018-7824

CVE-2018-7824

Description

An Externally Controlled Reference to a Resource (CWE-610) vulnerability exists in Schneider Electric Modbus Serial Driver (For 64-bit Windows OS:V3.17 IE 37 and prior , For 32-bit Windows OS:V2.17 IE 27 and prior, and as part of the Driver Suite version:V14.12 and prior) which could allow write access to system files available only to users with SYSTEM privilege or other important user files.

Affected products

2
  • Range: <=V3.17 IE 37 (64-bit), <=V2.17 IE 27 (32-bit), <=V14.12 (Driver Suite)
  • Schneider/Schneider Electric Modbus Serial Driver (For 64-bit Windows OS:V3.17 IE 37 and prior , For 32-bit Windows OS:V2.17 IE 27 and prior, and as part of the Driver Suite version:V14.12 and prior)v5
    Range: Schneider Electric Modbus Serial Driver (For 64-bit Windows OS:V3.17 IE 37 and prior

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.