CVE-2024-23967 Autel MaxiCharger AC Elite Business C50 WebSocket Base64 Decoding Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Autel MaxiCharger AC Elite Business C50 chargers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed
Reporter | Title | Published | Views | Family All 4 |
---|---|---|---|---|
CVE | CVE-2024-23967 | 28 Sep 202407:15 | – | cve |
Zero Day Initiative | (Pwn2Own) Autel MaxiCharger AC Elite Business C50 WebSocket Base64 Decoding Stack-based Buffer Overflow Remote Code Execution Vulnerability | 21 Jun 202400:00 | – | zdi |
Cvelist | CVE-2024-23967 Autel MaxiCharger AC Elite Business C50 WebSocket Base64 Decoding Stack-based Buffer Overflow Remote Code Execution Vulnerability | 28 Sep 202406:12 | – | cvelist |
Vulnrichment | CVE-2024-23967 Autel MaxiCharger AC Elite Business C50 WebSocket Base64 Decoding Stack-based Buffer Overflow Remote Code Execution Vulnerability | 28 Sep 202406:12 | – | vulnrichment |
Source | Link |
---|---|
zerodayinitiative | www.zerodayinitiative.com/advisories/ZDI-24-853/ |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo