Medium severity4.6NVD Advisory· Published Sep 11, 2024· Updated Apr 15, 2026
CVE-2024-39808
CVE-2024-39808
Description
Incorrect Calculation of Buffer Size (CWE-131) in the Controller 6000 and Controller 7000 OSDP message handling, allows an attacker with physical access to Controller wiring to instigate a reboot leading to a denial of service.
This issue affects: Controller 6000 and Controller 7000 9.10 prior to vCR9.10.240816a (distributed in 9.10.1530 (MR2)), 9.00 prior to vCR9.00.240816a (distributed in 9.00.2168 (MR4)), 8.90 prior to vCR8.90.240816a (distributed in 8.90.2155 (MR5)), 8.80 prior to vCR8.80.240816b (distributed in 8.80.1938 (MR6)), all versions of 8.70 and prior.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 9.10 prior to vCR9.10.240816a, 9.00 prior to vCR9.00.240816a, 8.90 prior to vCR8.90.240816a, 8.80 prior to vCR8.80.240816b, all versions 8.70 and prior
- Range: 9.10 prior to vCR9.10.240816a, 9.00 prior to vCR9.00.240816a, 8.90 prior to vCR8.90.240816a, 8.80 prior to vCR8.80.240816b, all versions 8.70 and prior
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.