CVE-2024-8306

🗓️ 11 Sep 2024 15:05:31Reported by schneiderType

Improper Privilege Management vulnerability causing unauthorized acces

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2024-8306	11 Sep 202417:51	–	circl
CNNVD	Schneider Electric Vijeo Designer 安全漏洞	11 Sep 202400:00	–	cnnvd
Cvelist	CVE-2024-8306	11 Sep 202415:05	–	cvelist
EUVD	EUVD-2024-49080	3 Oct 202520:07	–	euvd
ICS	Schneider Electric Vijeo Designer and EcoStruxureâ„¢ Machine Expert (Update A)	10 Sep 202400:00	–	ics
NVD	CVE-2024-8306	11 Sep 202415:15	–	nvd
Positive Technologies	PT-2024-5983 · Schneider Electric · Vijeo Designer	10 Sep 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-8306	4 Feb 202522:38	–	redhatcve
Vulnrichment	CVE-2024-8306	11 Sep 202415:05	–	vulnrichment

NVD

Node

schneider-electric vijeo_designerRange<6.3

schneider-electric vijeo_designerMatch6.3-

schneider-electric vijeo_designer_embedded_in_ecostruxure_machine_expert

[
  {
    "defaultStatus": "unaffected",
    "product": "Vijeo Designer",
    "vendor": "Schneider Electric",
    "versions": [
      {
        "status": "affected",
        "version": "Prior to V6.3 SP1"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Vijeo Designer embedded in EcoStruxure™ Machine Expert",
    "vendor": "Schneider Electric",
    "versions": [
      {
        "status": "affected",
        "version": "All Versions"
      }
    ]
  }
]

Source	Link
download	www.download.schneider-electric.com/files

18 Sep 2024 19:51Current

7.9High risk

Vulners AI Score7.9

CVSS 3.17.8

EPSS0.00109

SSVC

CWE-269