VYPR
Medium severity4.6NVD Advisory· Published Sep 11, 2024· Updated Apr 15, 2026

CVE-2024-39808

CVE-2024-39808

Description

Incorrect Calculation of Buffer Size (CWE-131) in the Controller 6000 and Controller 7000 OSDP message handling, allows an attacker with physical access to Controller wiring to instigate a reboot leading to a denial of service.

This issue affects: Controller 6000 and Controller 7000 9.10 prior to vCR9.10.240816a (distributed in 9.10.1530 (MR2)), 9.00 prior to vCR9.00.240816a (distributed in 9.00.2168 (MR4)), 8.90 prior to vCR8.90.240816a (distributed in 8.90.2155 (MR5)), 8.80 prior to vCR8.80.240816b (distributed in 8.80.1938 (MR6)), all versions of 8.70 and prior.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Range: 9.10 prior to vCR9.10.240816a, 9.00 prior to vCR9.00.240816a, 8.90 prior to vCR8.90.240816a, 8.80 prior to vCR8.80.240816b, all versions 8.70 and prior
  • Range: 9.10 prior to vCR9.10.240816a, 9.00 prior to vCR9.00.240816a, 8.90 prior to vCR8.90.240816a, 8.80 prior to vCR8.80.240816b, all versions 8.70 and prior

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.