CVE Published: 13/11/2024 |
CVE Updated: 13/11/2024 |
CVE Year: 2024 Source: schneider |
Vendor: Schneider Electric |
Product: Modicon M340 CPU (part numbers BMXP34*) Status : PUBLISHED
CVE-2024-8937 Description
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could
cause a potential arbitrary code execution after a successful Man-In-The Middle attack followed by sending a
crafted Modbus function call to tamper with memory area involved in the authentication process.