VYPR
Unrated severityNVD Advisory· Published Jun 12, 2024· Updated Aug 2, 2024

CVE-2024-37040

CVE-2024-37040

Description

CWE-120: Buffer Copy without Checking Size of Input (‘Classic Buffer Overflow’) vulnerability exists that could allow a user with access to the device’s web interface to cause a fault on the device when sending a malformed HTTP request.

Affected products

6
  • Range: Versions C3414-500-S02K5_P8 and prior
  • Schneider Electric/Sage 1430v5
    Range: Versions C3414-500-S02K5_P8 and prior
  • Schneider Electric/Sage 1450v5
    Range: Versions C3414-500-S02K5_P8 and prior
  • Schneider Electric/Sage 2400v5
    Range: Versions C3414-500-S02K5_P8 and prior
  • Schneider Electric/Sage 3030 Magnumv5
    Range: Versions C3414-500-S02K5_P8 and prior
  • Schneider Electric/Sage 4400v5
    Range: Versions C3414-500-S02K5_P8 and prior

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.