High severity8.2NVD Advisory· Published May 28, 2024· Updated Jun 17, 2026
CVE-2024-24957
CVE-2024-24957
Description
Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these vulnerabilities.This CVE tracks the arbitrary null-byte write vulnerability located in firmware 1.2.10.9 of the P3-550E at offset 0xb6aa4.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
21.2.10.9+ 1 more
- (no CPE)range: 1.2.10.9
- (no CPE)range: 1.2.10.9
Patches
Vulnerability mechanics
References
2- talosintelligence.com/vulnerability_reports/TALOS-2024-1938nvdExploitThird Party Advisory
- www.talosintelligence.com/vulnerability_reports/TALOS-2024-1938nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.